Novell is reporting a critical security vulnerability in NetStorage which can be exploited by a remote attacker to compromise a system. The vendor has not provided any details of the vulnerability, but has said exploiting the vulnerability to inject and execute code does not require authentication. More than 100,000 Zyxel networking products could be vulnerable to a hardcoded credential vulnerability (CVE-2020-29583) potentially allowing cybercriminal device takeover. Read the full article by The H Security, published on Monday, here.
Source: https://threatpost.com/novell-netstorage-hit-critical-vulnerability-020910/73510/