Lucene search

K
cvelistZyxelCVELIST:CVE-2023-6398
HistoryFeb 20, 2024 - 1:34 a.m.

CVE-2023-6398

2024-02-2001:34:32
CWE-78
Zyxel
www.cve.org
vulnerability
zyxel atp
usg flex
file upload
command injection
firmware
ftp
os commands

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.4%

A post-authentication command injection vulnerability in the file upload binary in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1, USG FLEX series firmware versions from 4.50 through 5.37 Patch 1, USG FLEX 50(W) series firmware versions from 4.16 through 5.37 Patch 1, USG20(W)-VPN series firmware versions from 4.16 through 5.37 Patch 1,

USG FLEX H series firmware versions from 1.10 through 1.10 Patch 1,

NWA50AX firmware versions through 6.29(ABYW.3), WAC500 firmware versions through 6.65(ABVS.1), WAX300H firmware versions through 6.60(ACHF.1), and WBE660S firmware versions through 6.65(ACGG.1) could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device via FTP.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "ATP series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "version 4.32 through 5.37 Patch 1"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "USG FLEX series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "version 4.50 through 5.37 Patch 1"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "USG FLEX 50(W) series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": " version 4.16 through 5.37 Patch 1"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "USG20(W)-VPN series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "version 4.16 through 5.37 Patch 1"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": " NWA50AX firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "< 6.29(ABYW.4)"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": " WAC500 firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "< 6.70(ABVS.1)"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WAX300H firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "< 6.70(ACHF.1)"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "WBE660S firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "< 6.70(ACGG.1)"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "USG FLEX H series firmware",
    "vendor": "Zyxel",
    "versions": [
      {
        "status": "affected",
        "version": "version 1.10 through 1.10 Patch 1"
      }
    ]
  }
]

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.4%

Related for CVELIST:CVE-2023-6398