CRW

Home Wiki

Zyxel

View on consumerrights.wiki ↗

Work in progress
This article has been flagged for additional work. Treat its claims as provisional.
Stub
This article is a stub. The wiki community is still building it out.
Contents3
  1. Incidents
  2. Zyxel refuses to release patches for actively exploited zero-day vulnerabilities (2024-2025)
  3. References

Article Status Notice: This Article is a stub

This article is underdeveloped, and needs additional work to meet the wiki's Content Guidelines and be in line with our Mission Statement for comprehensive coverage of consumer protection issues. Learn more ▼

Issues may include:

  • This article needs to be expanded to provide meaningful information
  • This article requires additional verifiable evidence to demonstrate systemic impact
  • More documentation is needed to establish how this reflects broader consumer protection concerns
  • The connection between individual incidents and company-wide practices needs to be better established
  • The article is simply too short, and lacks sufficient content

How you can help:

  • Add documented examples with verifiable sources
  • Provide evidence of similar incidents affecting other consumers
  • Include relevant company policies or communications that demonstrate systemic practices
  • Link to credible reporting that covers these issues
  • Flesh out the article with relevant information

This notice will be removed once the article is sufficiently developed. Once you believe the article is ready to have its notice removed, please visit the Moderator's noticeboard, or the Discord (join here) and post to the #appeals channel, or mention its status on the article's talk page.

Zyxel
Basic information
Founded 1989
Legal Structure Private
Industry Telecommunication
Also known as
Official website https://www.zyxel.com/

Zyxel is a telecommunication company that was founded in 1989 in Taiwan. They are most known to create consumer grade routers but also produce enterprise equipment.

Zyxel Communications Corporation is a subisidiary of Zyxel Group Corporation.

Incidents

Zyxel refuses to release patches for actively exploited zero-day vulnerabilities (2024-2025)

Zyxel released a statement announcing they had no plans to release a patch for two actively exploited flaws (zero-day vulnerabilities) in its routers, potentially affecting thousands of customers. The company advised customers to buy new routers despite the fact that the affected routers were still possible to buy online.[1][2][3]

References

  1. "Zyxel security advisory for command injection and insecure default credentials vulnerabilities in certain legacy DSL CPE". Zyxel. 4 Feb 2025. Archived from the original on 12 Nov 2025. Retrieved 26 Jan 2026.
  2. Page, Carly (5 Feb 2025). "Router maker Zyxel tells customers to replace vulnerable hardware exploited by hackers". TechCrunch. Archived from the original on 17 Feb 2026. Retrieved 26 Jan 2026.
  3. Whittaker, Zack (5 Feb 2025). "Zack Whittaker on Mastodon". Mastodon. Archived from the original on 26 Feb 2025. Retrieved 26 Jan 2026.
Filed under