VYPR
Unrated severityCISA KEVNVD Advisory· Published Dec 22, 2020· Updated Oct 21, 2025

CVE-2020-29583

CVE-2020-29583

Description

Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zyxel/USGdescription
  • Zyxel/USGllm-create
    Range: 4.60

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.