CVE-2023-22920

Name of the Vulnerable Software and Affected Versions Zyxel LTE3316-M604 version V2.00(ABMP.6)C0 Zyxel LTE3202-M437 (affected versions not specified)

Description A security misconfiguration vulnerability exists due to a factory default misconfiguration intended for testing purposes. This allows a remote attacker to access an affected device using Telnet, potentially leading to privilege escalation.

Recommendations For Zyxel LTE3316-M604 version V2.00(ABMP.6)C0, consider disabling Telnet access until a patch is available. For Zyxel LTE3202-M437, at the moment, there is no information about a newer version that contains a fix for this vulnerability.