Zyxel’s Cloud CNM SecuManager software is chock-full of unpatched vulnerabilities, researchers say. In all, researchers have identified 16 vulnerabilities, ranging from multiple backdoors and default credentials to insecure memory storage. The vulnerabilities were reported on December 20, and on Monday they publicly disclosed the vulnerabilities online and via security mailing lists. The company declined to comment on the research, adding that it was unaware of the report. On Wednesday, Nathan Yen said that the company was now aware of issues and was working to quickly fix them.
Source: https://threatpost.com/flaws-zyxels-network-management-software/153554/