Zyxel issues emergency RCE patch for end-of-life NAS devices

Zyxel released emergency patches for three critical vulnerabilities (unauthenticated command injection and remote code execution) in legacy NAS326 and NAS542 devices, while two additional privilege-escalation and information-disclosure flaws remain unpatched; proof-of-concept exploits have been published and owners are advised to update affected firmware despite the devices reaching end-of-life.