ZyXEL reassures customers over Heartbleed vulnerability

  • Share on Facebook
  • Share on Twitter
  • Share on Linkedin
  • Share on Google Plus
April 11, 2014


Wokingham, UK; 11 April 2014 – ZyXEL Communications, a leading provider of networking and communications solutions and equipment for service providers, has reassured customers that its UTM and firewall appliances and DSL customer premises equipment is not affected by the so-called Heartbleed OpenSSL vulnerability that is being widely discussed in mainstream and social media at the present time.

The company has carried out extensive checks and confirmed that the version of OpenSSL used in its equipment is not vulnerable to the bug.

The company’s 2.10 firmware update for its ZyWALL Unified Security Gateway (USG) and ZyWALL Firewall appliances, which was made available free of charge to users , uses Open SSL 0.9.8 branch version (0.9.8i) and current versions of the appliances 3.30 OpenSSL 1.0.0 branch version (1.0.0a). These versions of OpenSSL are not affected by the currently circulating vulnerability.

Similarly, ZyXEL’s VMG1312 and VMG1302 gateways and other models that support HTTP remote management use OpenSSL 0.9.7f, which is also unaffected by the Heartbleed bug

Thorsten Kurpjuhn, European Marketing Development Manager at ZyXEL, stated: “We have made rigorous checks to ensure that the Heartbleed bug does not affect our customers and have put appropriate measures in place to reassure customers and answer any of their concerns. We will continue to monitor and assess the situation and ensure that customers are kept informed of any relevant changes or updates.”

For more information, resellers should contact their preferred ZyXEL distributor, or call their ZyXEL partner account manager on 01189 979 7277.