Warning : Whoever owns this ZyXEL Change Your Default Password From username and password both being admin for it is a security concern.
I have attached the model number and other details along with a photo of the router and the video recording demonstrating the process. I hope you to look into this issue and patch it with an update soon.
I sent an email to airtel on 11th September 2022 - At 121@airtel.com, net@airtel.com and dm at twitter at airtelpresence but no reply from two days.
Also Both Port 80 and 443 are reserved by default for router even with DMZ and reverse proxy with nginx proxy you cannot host easily ( there are other ways to do so but that becomes too hard and complicated for me however there are experts who can do it not that it is impossible) as with other airtel routers like my Nokia at home it was easy to do so with only one port 443 open and reverse proxy I could host services easily that too with ssl/https. But now I had to open port for each service separatly which is not a good practice in my opinion and i am not comfertable with tunnels of any sort and there are also limitations to it too.
I also wanted to replicate it with my raspberry pi 4 here but ran down this roadblock and fast forward to today i cannot even port forward even one port seems like i have been blocked from Airtel's end I think i have shot myself in leg by reporting this issue.
What should i do for this issue should i demand for change of router or anything else there are many experts on this forums please give your input /advice regarding this issue. Sharing My Link But Will Cut The Part Where My Modem Details Are Mentioned.
The Photo - Router of router and video which show the process i got into router Video in this video i type longer password because i have chaged my password to something secure.
I Got Airtel Fiber Installed On 9th September 2022. I got a router by the brand name ZYXEL which is one of airtel's new fiber modem/router being installed. There is no problem with the internet connection. It works great and as expected but today I discovered a serious flaw in the implementation of it. With access to the public ip one can get into the routers interface very easily and moreover the default gateway username and password both being admin. So anyone with access to my public ip or anyone else with the same router one can get into the web interface of the router which is a serious vulnerability. With Both Ports 80 and 443 open to the web. This is a serious security issue.
I have attached the model number and other details along with a photo of the router and the video recording demonstrating the process. I hope you to look into this issue and patch it with an update soon.
I sent an email to airtel on 11th September 2022 - At 121@airtel.com, net@airtel.com and dm at twitter at airtelpresence but no reply from two days.
Also Both Port 80 and 443 are reserved by default for router even with DMZ and reverse proxy with nginx proxy you cannot host easily ( there are other ways to do so but that becomes too hard and complicated for me however there are experts who can do it not that it is impossible) as with other airtel routers like my Nokia at home it was easy to do so with only one port 443 open and reverse proxy I could host services easily that too with ssl/https. But now I had to open port for each service separatly which is not a good practice in my opinion and i am not comfertable with tunnels of any sort and there are also limitations to it too.
I also wanted to replicate it with my raspberry pi 4 here but ran down this roadblock and fast forward to today i cannot even port forward even one port seems like i have been blocked from Airtel's end I think i have shot myself in leg by reporting this issue.
What should i do for this issue should i demand for change of router or anything else there are many experts on this forums please give your input /advice regarding this issue. Sharing My Link But Will Cut The Part Where My Modem Details Are Mentioned.
The Photo - Router of router and video which show the process i got into router Video in this video i type longer password because i have chaged my password to something secure.