These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2024-40891 is a Zyxel DSL CPE OS command injection vulnerability that CISA added to its Known Exploited Vulnerabilities catalog on 2025-02-11. The KEV entry also notes the impacted product may be end-of-life or end-of-service, and that users should discontinue use if no current mitigation is available.
CVE-2024-40890 is a Zyxel DSL CPE OS command injection vulnerability that CISA added to the Known Exploited Vulnerabilities catalog on 2025-02-11. The KEV entry indicates the affected product may be end-of-life or end-of-service, and CISA advises discontinuing use of the product if a current mitigation is not available. Because this issue is already in KEV, defenders should treat it as an active risk indi [truncated]