diff --git a/Zyxel/CVE-2022-30525/README.md b/Zyxel/CVE-2022-30525/README.md
new file mode 100644
index 0000000..2b59f9b
--- /dev/null
+++ b/Zyxel/CVE-2022-30525/README.md
@@ -0,0 +1,10 @@
+
+# Zyxel ZTP RCE (CVE-2022-30525)
+
+Several firewalls, such as the Zyxel ATP series, VPN series, and USG FLEX series, have security vulnerabilities. An unauthenticated remote attacker could execute arbitrary code on the affected device as the user nobody, taking control of the server.
+
+FOFA **query rule**: [title="USG FLEX" || title="USG20-VPN" || title="USG20W-VPN" || title="ATP100" || title="ATP200" || title="ATP500"title="ATP700" || title="ATP800"](https://fofa.info/result?qbase64=dGl0bGU9IlVTRyBGTEVYIiB8fCB0aXRsZT0iVVNHMjAtVlBOIiB8fCB0aXRsZT0iVVNHMjBXLVZQTiIgfHwgdGl0bGU9IkFUUDEwMCIgfHwgdGl0bGU9IkFUUDIwMCIgfHwgdGl0bGU9IkFUUDUwMCJ0aXRsZT0iQVRQNzAwIiB8fCB0aXRsZT0iQVRQODAwIg%3D%3D)
+
+# Demo
+
+![Zyxel_ZTP_RCE_CVE_2022_30525](Zyxel_ZTP_RCE_CVE_2022_30525.gif)
diff --git a/Zyxel/CVE-2022-30525/Zyxel_ZTP_RCE_CVE_2022_30525.gif b/Zyxel/CVE-2022-30525/Zyxel_ZTP_RCE_CVE_2022_30525.gif
new file mode 100644
index 0000000..621f88c
Binary files /dev/null and b/Zyxel/CVE-2022-30525/Zyxel_ZTP_RCE_CVE_2022_30525.gif differ