This is a official Press Information from Zyxel!
Full Article: Click for full article
Download Fix: Download
Zyxel gateways and access point controllers are affected by a Web CGI vulnerability. Users are advised to upgrade to the latest available firmware or hotfix for optimal protection.
What’s the vulnerability?
A Web CGI vulnerability was identified in Zyxel gateways and access point controllers that did not authenticate external DNS requests in their redirect CGI program. The vulnerability could allow an unauthenticated individual to spam an internal service or probe whether domain names are present on the internal network behind the firewall, which could result in internal DNS information disclosure.