Zyxel security advisory for the remote code execution vulnerability of NAS products



  • SinE
    SinE Posts: 1
    edited March 2020
    Thanks for nothing. NSA325v2 Still working and your team don't do nothing for the users.
    I'm not happy with your support, but don't worry, my new NAS will be from other brand. :/
  • Mijzelf
    Mijzelf Posts: 2,645  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    @SinE: did you see I have a patch for the 325?
  • katas
    katas Posts: 9  Freshman Member
    I see there has new firmware released.

  • Bls1990
    Bls1990 Posts: 2  Freshman Member
    @rinkymehra did you get your NAS sorted? I have a similar issue on one of mine
  • Einszweidrei
    Einszweidrei Posts: 1
    edited May 2020
    Did you also get a mail from HQ-MKT@zyxel.com via cp20.com?
    Doesn´t look professional and I´m scared that I opened a phishing mail or something similar. 

    How do you even see that your NAS is hacked? I am so unsure about this code injection because I opened the bloody mail and downloaded the .zip, looked into the .pdf. Only thing I did not do was to manually install the bin file into my NAS as after several bad attempts it updated itself via the autoupdate function. But was it so or did the hack took some tries and then it only looks like updatet?

Consumer Product Help Center