Zyxel is warning {that a} unhealthy safety signature replace is inflicting important errors for USG FLEX or ATP Collection firewalls, together with placing the gadget right into a boot loop.
“We have discovered a difficulty affecting a couple of units which will trigger reboot loops, ZySH daemon failures, or login entry issues,” warns a brand new Zyxel advisory.
“The system LED may additionally flash. Please be aware that is not associated to a CVE or safety difficulty.”
Zyxel says the problems are attributable to a failure in an Software Signature Replace for its cybersecurity options that was pushed out on 1/24 by way of 1/25 at night time.
Gadgets that obtained the defective replace are actually experiencing a variety of points, together with:
- System Error: Unsuitable CLI command, gadget timeout or gadget logout.
- Unable to login to ATP/USG FLEX through net GUI: 504 Gateway timeout.
- CPU utilization is excessive.
- In Monitor > Log, the message “ZySH daemon is busy” appeared.
- Unable to enter any instructions on console.
- Coredump messages seem on console.
Zyxel says solely USG FLEX or ATP Collection (ZLD Firmware Variations) firewalls with energetic safety licenses are impacted. Gadgets on the Nebula platform or USG FLEX H (uOS) sequence will not be affected.
As first reported by Born Metropolis, the one option to repair the difficulty is to have bodily entry to the firewall and to hook up with the console through an RS232 serial cable.
“This restoration requires a console cable and should be finished on-site. Whereas it is not excellent, it is the one assured answer for this difficulty,” reads the advisory.
Supply: Zyxel
Admins will now must conduct a sequence of steps to revive the firewall, together with backing up the configuration, downloading and making use of a particular firmware, after which connecting through the online GUI to revive the backed-up configuration file.
Zyxel has shared detailed steps in its advisory, and it’s extremely really useful that admins overview them earlier than making an attempt to get well units.
For patrons who’ve additional questions or want help, Zyxel shall be internet hosting a Microsoft Groups Open Query Session on Saturday January twenty fifth from 9am – 12pm and 1pm – 5pm (GMT +1).
BleepingComputer has contacted Zyxel with questions concerning the incident, however no reply was instantly obtained.