Zyxel (DSL CPE Devices) Data Breach
Zyxel (DSL CPE Devices) experienced a data breach that was reported on February 11, 2025. Multiple Zyxel DSL CPE devices contain a post-authentication command injection vulnerability in the CGI program that could allow an authenticated attacker to execute OS commands via a crafted HTTP req
Key Facts
- Organization
- Zyxel (DSL CPE Devices)
- Date Reported
- February 11, 2025
- Incident Type
- unknown
- Industry
- Technology
- Severity Score
- 5/10
- Confidence Level
- high
Source
View original source - External link to primary source documentation
Understanding unknown Incidents
Data breaches can result in significant financial, operational, and reputational damage. Organizations should implement defense-in-depth strategies and maintain incident response capabilities.