CVE-2020-25014

🗓️ 27 Nov 2020 17:18:30Reported by mitreType

A buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series allows remote attackers to execute arbitrary code via crafted http packet

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2020-25014	27 Nov 202020:50	–	circl
CNNVD	Zyxel UTM and Zyxel Gateway VPN series Buffer Error Vulnerability	27 Nov 202000:00	–	cnnvd
Cvelist	CVE-2020-25014	27 Nov 202017:18	–	cvelist
EUVD	EUVD-2020-17714	7 Oct 202500:30	–	euvd
NVD	CVE-2020-25014	27 Nov 202018:15	–	nvd
Prion	Stack overflow	27 Nov 202018:15	–	prion
Positive Technologies	PT-2020-15889 · Zyxel · Zyxel Utm/Vpn	27 Nov 202000:00	–	ptsecurity
RedhatCVE	CVE-2020-25014	22 May 202515:22	–	redhatcve

NVD

Node

zyxel zldRange4.30–4.55

AND

zyxel zywall_110Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel zywall_1100Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel zywall_310Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_110Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_1100Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_1900Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_20wMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_20w-vpnMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_2200-vpnMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_310Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_40Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_40wMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_60Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_60wMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg110Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg1100Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg1900Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg20-vpnMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg20w-vpnMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg210Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg2200-vpnMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg310Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg40Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg40wMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg60Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg60wMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel vpn100Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel vpn300Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel vpn50Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_flex_100Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_flex_200Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_flex_500Match-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_flex_100wMatch-

Node

zyxel zldRange4.30–4.55

AND

zyxel usg_flex_700Match-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa1123-ac_hdMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa1123-ac_proMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa1123-acv2Match-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wax510dMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wac5302d-sMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa5120Match-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa5301-njMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wax610dMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wax650sMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wac6550Match-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wac6303d-sMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wac6500Match-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel wac6100Match-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa210axMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa110axMatch-

Node

zyxel access_points_firmwareRange≤6.10

zyxel access_points_firmwareMatch6.10-

zyxel access_points_firmwareMatch6.10patch1

zyxel access_points_firmwareMatch6.10patch2

zyxel access_points_firmwareMatch6.10patch3

zyxel access_points_firmwareMatch6.10patch4

zyxel access_points_firmwareMatch6.10patch5

zyxel access_points_firmwareMatch6.10patch6

zyxel access_points_firmwareMatch6.10patch7

AND

zyxel nwa1302-acMatch-

Source	Link
businessforum	www.businessforum.zyxel.com/categories/security-news-and-release
zyxel	www.zyxel.com/support/Zyxel-security-advisory-for-buffer-overflow-vulnerability.shtml

12 Dec 2024 16:23Current

9.8High risk

Vulners AI Score9.8

CVSS 27.5

CVSS 3.19.8

EPSS0.01998

CWE-787