USG110 - FW v4.72 - different vulnerabilities solved (or not?)
Master MemberJust reading the feature log of the latest FW patch v4.72. It's listing the following vulnerabilities which have been dealt with:
CVE-2022-0778
CVE-2022-0342
CVE-2021-44224
So far so good. But your latest security advisory of today ( https://www.zyxel.com/support/multiple-vulnerabilities-of-firewalls-AP-controllers-and-APs.shtml ) is listing the following v4.71 vulnerabilities, which should be mitigated by v4.72, too:
CVE-2022-26531
CVE-2022-26532
CVE-2022-0910
Why nothing of these vulnerabilities is written about in the v4.72 feature log?
0
All Replies
-
As a personal opinion, these vulnerabilities are not yet mitigated/solved into 4.72.Why nothing of these vulnerabilities is written about in the v4.72 feature log?
0 -
Hi @USG_User
We're sorry for the confusion
This vulnerability has been fixed aggressively into regular release but we did not disclose it since the official disclosure time has not been aligned with the researcher at that moment. In the meantime, we also updated device what's new with CVE info afterward, expected users getting real time notice from device directly.
Here it is the what's new content:
Click this link to start:
0
Guru Member
Zyxel Employee
Categories
- All Categories
- 184 Beta Program
- 1.7K Nebula
- 90 Nebula Ideas
- 63 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 51 Switch Ideas
- 915 WirelessLAN
- 27 WLAN Ideas
- 5.4K Consumer Product
- 174 Service & License
- 295 News and Release
- 65 Security Advisories
- 14 Education Center
- 984 FAQ
- 427 Nebula FAQ
- 255 Security FAQ
- 100 Switch FAQ
- 115 WirelessLAN FAQ
- 21 Consumer Product FAQ
- 66 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 52 Security Highlight
