Zyxel warns {that a} unhealthy safety signature replace is inflicting crucial errors for USG Flex or ATP sequence firewalls, together with being put right into a boot loop.
“We have now discovered a difficulty affecting some gadgets which will trigger reboot loops, zysh daemon failures, or login entry points,” warns a brand new zyxel discover.
“The system LED might also flash. Please observe that that is No associated to a CVE or safety difficulty.”
Zyxel says the problems are brought on by a bug in an utility signature replace for its cybersecurity options that was pushed out from 1/24 to 1/25 in a single day.
Units that obtained the defective replace at the moment are experiencing a variety of points, together with:
- Machine error: incorrect CLI command, gadget timeout, or gadget logout.
- Unable to log in to ATP/USG Flex by way of Net GUI: 504 Gateway TimeOut.
- CPU utilization is excessive.
- In monitor > log, the message “Zysh Daemon is busy” appeared.
- No command could be entered into the console.
- COREDUMP messages seem on the console.
Zyxel says that solely USG Flex or ATP sequence firewalls (ZLD firmware variations) with lively safety licenses are affected. Units on the Nebula platform or USG Flex H sequence (UOS) will not be affected.
As first reported by Born metropolisThe one solution to clear up the issue is to have bodily entry to the firewall already Connect with the console by way of RS232 serial cable.
“This restoration requires a console cable and should be achieved on-site. Whereas not ultimate, it’s the solely assured answer to this difficulty,” the discover says.
Supply: Zyxel
Directors will now must carry out a sequence of steps to revive the firewall, together with backing up the configuration, downloading and making use of particular firmware, after which connecting by way of the online GUI to revive the backup configuration file.
Zyxel has shared detailed steps on your recommendationand it’s strongly beneficial that directors evaluation them earlier than making an attempt to recuperate gadgets.
For purchasers who’ve additional questions or need assistance, Zyxel will host a Microsoft Groups Open Query Session on Saturday, January 25 from 9am to 12pm and 1pm – 5pm (GMT +1).
BleepingComuter has contacted Zyxel with questions concerning the incident, however no response was instantly obtained.
