A serious flaw discovered in Zyxel firewall models has been extensively exploited by Distributed Denial of Service (DDoS) botnets. The vulnerability, designated CVE-2023-28771 by Fortinet security researchers, specifically impacts Linux platforms. By taking advantage of the weakness, remote attackers are able to take over the susceptible computers without authorization and launch DDoS attacks.
Cara Lin, a senior antivirus analyst at Fortinet, spoke about the flaw in a blog post that was published on Wednesday, July 20. She explained that it results from a command injection flaw that allows attackers to execute arbitrary code by delivering a specially designed packet to the targeted Zyxel device.