12 matches found
Zyxel zysh - Format string Exploit
Proof of concept format string exploit for Zyxel zysh. Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21,...
Zyxel zysh - Format string
!/usr/bin/expect -f raptorzyshfhtagn.exp - zysh format string PoC exploit Copyright c 2022 Marco Ivaldi "We live on a placid island of ignorance in the midst of black seas of infinity, and it was not meant that we should voyage far." -- H. P. Lovecraft, The Call of Cthulhu "Multiple improper inpu...
The vulnerability of the command shell of ZySH microprogramming software for network devices such as ZyXEL USG FLEX and ATP allows a hacker to alter the URL address of the registration page.
The vulnerability of the command shell of the ZySH microprogramming software for ZyXEL USG FLEX, VPN, and ATP is related to deficiencies in access control. Exploiting this vulnerability could allow a attacker to alter the URL address of the registration page through the web interface...
CVE-2023-5650
An improper privilege management vulnerability in the ZySH of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50W series firmware versions 4.16 through 5.37, USG20W-VPN series firmware versions 4.16 through 5.37, and VPN seri...
Privilege escalation
An improper privilege management vulnerability in the ZySH of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50W series firmware versions 4.16 through 5.37, USG20W-VPN series firmware versions 4.16 through 5.37, and VPN seri...
CVE-2023-5650
CVE-2023-5650 describes an improper privilege management vulnerability in Zyxel ZySH that affects Zyxel ATP, USG FLEX (including 50(W)), USG20(W)-VPN, and VPN series firmware. A authenticated local attacker could exploit ZySH to modify the URL of the registration page in the device web GUI, enabl...
CVE-2023-5650
An improper privilege management vulnerability in the ZySH of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50W series firmware versions 4.16 through 5.37, USG20W-VPN series firmware versions 4.16 through 5.37, and VPN seri...
Zyxel ATP Security Vulnerability
Zyxel ATP is a firewall from Zyxel, China. A security vulnerability exists in the Zyxel ATP series firmware versions 4.32 to 5.37, USG FLEX series firmware versions 4.50 to 5.37, USG FLEX 50W series firmware versions 4.16 to 5.37, USG20W-VPN series firmware versions 4.16 to 5.3, and VPN series...
PT-2023-7250 · Zyxel · Zyxel Usg Flex Series +4
Name of the Vulnerable Software and Affected Versions: ZyXEL USG FLEX series firmware versions 4.50 through 5.37 ZyXEL USG FLEX 50W series firmware versions 4.16 through 5.37 ZyXEL USG20W-VPN series firmware versions 4.16 through 5.37 ZyXEL VPN series firmware versions 4.30 through 5.37 ZyXEL ATP...
CVE-2017-17550
ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected by a CSRF vulnerability via a cgi-bin/zysh-cgi cmd action to add a user account. This account's access could, for example, subsequently be used for stored XSS...
CVE-2017-17550
ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected by a CSRF vulnerability via a cgi-bin/zysh-cgi cmd action to add a user account. This account's access could, for example, subsequently be used for stored XSS...
CVE-2017-17550
The vulnerability is in ZyXEL ZyWALL USG devices (2.12 AQQ.2 and 3.30 AQQ.7) where a CSRF flaw in the cgi-bin/zysh-cgi cmd action allows an attacker to add a user account. This newly created account could subsequently be used to perform stored XSS, as described in multiple sources. Affected softw...