Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:17 p.m.12 views

CVE-2022-0910

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware...

6.5CVSS7.1AI score0.00672EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2022/05/27 7:28 a.m.168 views

Zyxel Issues Patches for 4 New Flaws Affecting AP, API Controller, and Firewall Devices

Zyxel has released patches to address four security flaws affecting its firewall, AP Controller, and AP products to execute arbitrary operating system commands and steal select information. The list of security vulnerabilities is as follows - CVE-2022-0734 - A cross-site scripting XSS...

10CVSS3AI score0.99938EPSS
Exploits31
NVD
NVD
added 2022/05/24 3:15 a.m.16 views

CVE-2022-0910

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware...

6.5CVSS0.00672EPSS
Exploits0References1
CVE
CVE
added 2022/05/24 2:20 a.m.142 views

CVE-2022-0910

CVE-2022-0910 describes an authentication-bypass flaw in Zyxel firewall products where an authenticated attacker can downgrade from two-factor to one-factor authentication when connecting to the IPsec VPN server. Affected are Zyxel USG/ZyWALL firmware 4.32–4.71, USG FLEX 4.50–5.21, ATP 4.32–5.21,...

6.5CVSS7.1AI score0.00672EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder