2 matches found
Zyxel USG / VPN < 5.37 Privilege Management
Firmware version of the Zyxel USG or VPN device is less than 5.37. This means the Zyxel device is vulnerable to the following privilege management vulnerability: - An improper privilege management vulnerability in the hotspot feature could allow an authenticated local attacker to access the syste...
CVE-2023-5960
CVE-2023-5960 describes an improper privilege management vulnerability in Zyxel USG FLEX firewall and VPN series firmware. Affected products: USG FLEX firmware 4.50–5.37 and VPN firmware 4.30–5.37. Root cause: hotspot feature allows an authenticated local attacker to access system files on the de...