{"id":"CVE-2020-29583","details":"Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.","modified":"2026-03-15T13:45:13.322173Z","published":"2020-12-22T22:15:14.443Z","references":[{"type":"WEB","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-29583"},{"type":"WEB","url":"http://ftp.zyxel.com/USG40/firmware/USG40_4.60%28AALA.1%29C0_2.pdf"},{"type":"ADVISORY","url":"https://www.zyxel.com/support/CVE-2020-29583.shtml"},{"type":"ADVISORY","url":"https://www.zyxel.com/support/security_advisories.shtml"},{"type":"ADVISORY","url":"https://businessforum.zyxel.com/discussion/5252/zld-v4-60-revoke-and-wk48-firmware-release"},{"type":"ADVISORY","url":"https://businessforum.zyxel.com/discussion/5254/whats-new-for-zld4-60-patch-1-available-on-dec-15"},{"type":"ADVISORY","url":"https://www.eyecontrol.nl/blog/undocumented-user-account-in-zyxel-products.html"},{"type":"EVIDENCE","url":"https://www.secpod.com/blog/a-secret-zyxel-firewall-and-ap-controllers-could-allow-for-administrative-access-cve-2020-29583/"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-29583.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]},{"events":[{"introduced":"0"},{"last_affected":"4.60"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}