Patches Made Available for Vulnerable EoL Zyxel NAS Models

Zyxel has released patches to address command injection and remote code execution vulnerabilities in two NAS products. The affected models are NAS326 and NAS542. While three critical flaws have been fixed, issues related to privilege escalation and information disclosure remain unresolved in these end-of-life products. The proof of concept (PoC) for these vulnerabilities is now available.