Lucene search

[email protected]CVE-2023-34139

HistoryJul 17, 2023 - 6:15 p.m.

CVE-2023-34139

2023-07-1718:15:09

CWE-78

[email protected]

web.nvd.nist.gov

cve-2023-34139

zyxel

usg flex

vpn

firmware

command injection

vulnerability

nvd

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.7%

JSON

A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 and VPN series firmware versions 4.20 through 5.36 Patch 2, could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affected device.

Affected configurations

NVD

Node

zyxelusg_2200-vpn_firmwareRange4.20–5.37

AND

zyxelusg_2200-vpnMatch-

Node

zyxelusg_flex_100_firmwareRange4.50–5.37

AND

zyxelusg_flex_100Match-

Node

zyxelusg_flex_100w_firmwareRange4.50–5.37

AND

zyxelusg_flex_100wMatch-

Node

zyxelusg_flex_200_firmwareRange4.50–5.37

AND

zyxelusg_flex_200Match-

Node

zyxelusg_flex_50_firmwareRange4.50–5.37

AND

zyxelusg_flex_50Match-

Node

zyxelusg_flex_500_firmwareRange4.50–5.37

AND

zyxelusg_flex_500Match-

Node

zyxelusg_flex_50w_firmwareRange4.50–5.37

AND

zyxelusg_flex_50wMatch-

Node

zyxelusg_flex_700_firmwareRange4.50–5.37

AND

zyxelusg_flex_700Match-

Node

zyxelzywall_vpn100_firmwareRange4.20–5.37

AND

zyxelzywall_vpn100Match-

Node

zyxelzywall_vpn2s_firmwareRange4.20–5.37

AND

zyxelzywall_vpn2sMatch-

Node

zyxelzywall_vpn300_firmwareRange4.20–5.37

AND

zyxelzywall_vpn300Match-

Node

zyxelzywall_vpn50_firmwareRange4.20–5.37

AND

zyxelzywall_vpn50Match-

Node

zyxelzywall_vpn_100_firmwareRange4.20–5.37

AND

zyxelzywall_vpn_100Match-

Node

zyxelzywall_vpn_300_firmwareRange4.20–5.37

AND

zyxelzywall_vpn_300Match-

Node

zyxelzywall_vpn_50_firmwareRange4.20–5.37

AND

zyxelzywall_vpn_50Match-

CPENameOperatorVersion
zyxel:usg_2200-vpn_firmwarezyxel usg 2200-vpn firmwarelt5.37

CPE	Name	Operator	Version
zyxel:usg_2200-vpn_firmware	zyxel usg 2200-vpn firmware	lt	5.37

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "USG FLEX series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "4.50 through 5.36 Patch 2"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "VPN series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "4.20 through 5.36 Patch 2"
      }
    ]
  }
]

References

www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-wlan-controllers

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.7%

JSON

Related for CVE-2023-34139

nvd1 cvelist1 prion1 nessus1