Lucene search

K
prionPRIOn knowledge basePRION:CVE-2023-5797
HistoryNov 28, 2023 - 3:15 a.m.

Privilege escalation

2023-11-2803:15:00
PRIOn knowledge base
www.prio-n.com
2
privilege escalation
cli command
zyxel atp
usg flex
usg20(w)-vpn
nwa50ax
wac500
wax300h
wbe660s
vulnerability
administrator logs
authenticated attacker

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series firmware versions 4.16 through 5.37, USG20(W)-VPN series firmware versions 4.16 through 5.37, VPN series firmware versions 4.30 through 5.37, NWA50AX firmware version 6.29(ABYW.2), WAC500 firmware version 6.65(ABVS.1), WAX300H firmware version 6.60(ACHF.1), and WBE660S firmware version 6.65(ACGG.1), could allow an authenticated local attacker to access the administrator’s logs on an affected device.

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

Related for PRION:CVE-2023-5797