CVE-2020-29583CISA KEVEPSS p99.8%

CVE-2020-29583Zyxel Multiple Products Use of Hard-Coded Credentials Vulnerability

Zyxel / Multiple Products

Description

Zyxel firewalls (ATP, USG, VM) and AP Controllers (NXC2500 and NXC5500) contain a use of hard-coded credentials vulnerability in an undocumented account ("zyfwp") with an unchangeable password.

Scoring

EPSS90.05% probability of exploitation · percentile 99.8% · 2026-06-17T12:03:21Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryZyxel Multiple Products Use of Hard-Coded Credentials Vulnerabilitykev-cve-2020-295830%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Zyxel Multiple Firewalls OS Command Injection Vulnerability
CVE
CVE-2025-9133
CVE
Zyxel Multiple NAS Devices OS Command Injection Vulnerability
CVE
Zyxel Multiple NAS Devices Command Injection Vulnerability
CVE
CVE-2025-8693
CVE
Zyxel Multiple Firewalls Buffer Overflow Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.