← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-29583 — Actively Exploited: Multiple Products (Zyxel)

Zyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnerability in an undocumented account ("zyfwp") with an unchangeable password.

CVE IDCVE-2020-29583
VendorZyxel
ProductMultiple Products
Vulnerability nameZyxel Multiple Products Use of Hard-Coded Credentials Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionZyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnerability in an undocumented account ("zyfwp") with an unchangeable password.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →