Zerobot, USG Flex 100 (W), CVE-2022-30525: something for update sooner than later.

mMontana Posts: 1,342  Guru Member
First Anniversary 10 Comments Friend Collector First Answer
edited December 2022 in Security
According to Bill Toulas on Bleeping Computer, a new malware named Zerobot is exploiting several CVEs about several products of (again) several brands.

CVE-2022-30525 has been declared resolved in May 2022 (according to Bleeping Computer and Rapid7 with firmware 5.21 for all the ZLD 5.x capable devices.

So if your box is still waiting for the latest firmware, don't make it wait more the necessary. An unknown vulnerability is a issue, a known and unpatched vulnerability is lack of due diligence.

All Replies

Security Highlight