Usg 60 Firmware@4.71 Security Vulnerabilities and Issues — Usg 60 Firmware@4.71 CVE List

ZyxelUsg 60 Firmware4.71

3 matches found

CVE•added 2022/05/24 5:20 a.m.•144 views

CVE-2022-26532

CVE-2022-26532 is a local command-injection vulnerability in Zyxel devices’ packet-trace CLI, affecting USG/ZyWALL family firmwares 4.09–4.71, USG FLEX 4.50–5.21, ATP 4.32–5.21, VPN 4.30–5.21, NSG 1.00–1.33 Patch 4, NXC2500 6.10 AAIG.3 and earlier, NAP203 6.25 ABFA.7 and earlier, NWA50AX 6.25 ABY...

7.8CVSS8AI score0.01652EPSS

Web

CVE•added 2022/05/24 2:20 a.m.•128 views

CVE-2022-0910

CVE-2022-0910 describes an authentication-bypass flaw in Zyxel firewall products where an authenticated attacker can downgrade from two-factor to one-factor authentication when connecting to the IPsec VPN server. Affected are Zyxel USG/ZyWALL firmware 4.32–4.71, USG FLEX 4.50–5.21, ATP 4.32–5.21,...

6.5CVSS7.1AI score0.00152EPSS

CVE•added 2022/05/24 12:0 a.m.•90 views

CVE-2022-26531

CVE-2022-26531 stems from multiple improper input validation flaws in Zyxel devices (USG/ZyWALL, USG FLEX, ATP, VPN, NSG, NXC2500, NAP203, NWA50AX, WAC500, WAX510D) across firmware ranges up to 4.71/5.21/6.x, enabling a local authenticated attacker to trigger a buffer overflow or system crash via...

7.8CVSS7.8AI score0.00989EPSS