Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-28767

The configuration parser fails to sanitize user-controlled input in the Zyxel ATP series firmware versions 5.10 through 5.36, USG FLEX series firmware versions 5.00 through 5.36, USG FLEX 50(W) series firmware versions 5.10 through 5.36, USG20(W)-VPN series firmware versions 5.10 through 5.36, and VPN series firmware versions 5.00 through 5.36. An unauthenticated, LAN-based attacker could leverage the vulnerability to inject some operating system (OS) commands into the device configuration data on an affected device when the cloud management mode is enabled.

Published

2023-07-17T17:15:09.883

Last Modified

2024-11-21T07:55:58.100

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-78
Type: Primary
CWE-78

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	zyxel	usg_2200-vpn_firmware	< 5.37	Yes
Hardware	zyxel	usg_2200-vpn	-	No
Operating System	zyxel	usg_flex_100_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_100	-	No
Operating System	zyxel	usg_flex_100w_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_100w	-	No
Operating System	zyxel	usg_flex_200_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_200	-	No
Operating System	zyxel	usg_flex_50_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_50	-	No
Operating System	zyxel	usg_flex_500_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_500	-	No
Operating System	zyxel	usg_flex_50w_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_50w	-	No
Operating System	zyxel	usg_flex_700_firmware	< 5.37	Yes
Hardware	zyxel	usg_flex_700	-	No
Operating System	zyxel	zywall_vpn100_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn100	-	No
Operating System	zyxel	zywall_vpn2s_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn2s	-	No
Operating System	zyxel	zywall_vpn300_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn300	-	No
Operating System	zyxel	zywall_vpn50_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn50	-	No
Operating System	zyxel	zywall_vpn_100_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn_100	-	No
Operating System	zyxel	zywall_vpn_300_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn_300	-	No
Operating System	zyxel	zywall_vpn_50_firmware	< 5.37	Yes
Hardware	zyxel	zywall_vpn_50	-	No
Operating System	zyxel	usg_20w-vpn_firmware	< 5.37	Yes
Hardware	zyxel	usg_20w-vpn	-	No
Operating System	zyxel	zywall_atp100_firmware	< 5.37	Yes
Hardware	zyxel	zywall_atp100	-	No
Operating System	zyxel	zywall_atp100w_firmware	< 5.37	Yes
Hardware	zyxel	zywall_atp100w	-	No
Operating System	zyxel	zywall_atp200_firmware	< 5.37	Yes
Hardware	zyxel	zywall_atp200	-	No
Operating System	zyxel	zywall_atp500_firmware	< 5.37	Yes
Hardware	zyxel	zywall_atp500	-	No
Operating System	zyxel	zywall_atp700_firmware	< 5.37	Yes
Hardware	zyxel	zywall_atp700	-	No
Operating System	zyxel	zywall_atp800_firmware	< 5.37	Yes
Hardware	zyxel	zywall_atp800	-	No

References

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-wlan-controllers Vendor Advisory ([email protected])
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-wlan-controllers Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)