Zywall USG FLEX Series & ATP Series - V5.40Patch 0 Firmware Release

Zyxel_Melen · May 20

Zywall USG FLEX Series & ATP Series Release Note

(Click the hyperlink to find the firmware file directly)

/tr>

S=Standalone mode, C=Cloud mode

New Feature and Enhancements	S	C
1. [eITS#240901862] Change the default value of Drop TCP SYN to 1 for better protection.	V	-
2. [eITS#241100728] Add the 'system-protect defaultport' ZySH command to support user-configured ports.	V	-
3. [eITS#241200805] Adjust abnormal tcp/udp traffic detected logs to debug level.	V	-
4. [eITS#241200902] Disable weak ciphers in the https/ssh protocol.	V	-
5. [eITS#250100793] Add i-note for base interface of PPPoE type.	V	-
6. [eITS#250200278] USG FLEX 700 support expiration and notification for local user account.	V	-
7. User Interface/Description change: a. Integration of the device’s local GUI pop-up warning into the Best Security Practices flow. b. Rename the signature page URL Threat Filter to 'DNS Threat Filter' and adjust the download message.	V	-
8. ZLD default IPSec VPN DH group change from DH2 to DH19.	V	-
9. AP Controller now supports the new WiFi 7 models: WBE530, WBE510D, and WBE630S.	V	-
10. Wireless Health has been enhanced to improve the user connection experience.	V	-
11. Japan 6GHz 320MHz bandwidth is now supported.	V	-
12. [eITS#221201339] Add the note: 'This device is managed by Nebula. Please use the Nebula-assigned password found in Site-wide > General settings > Device configuration' on the login Web-GUI in Nebula mode.	-	V
13. [eITS#241101116] DDNS password can't accept "."	-	V

S=Standalone mode, C=Cloud mode

Bug fix	S	C
1.	V	V
2. Common vulnerabilities and Exposures: ZLD5.40 Patch0 is no longer vulnerable to the following CVE References: ⚫ CVE-2024-38476	V	V

Please refer to the Download Link for more details.