CVE-2021-35031

EPSS 0.09%
Veröffentlicht 28.12.2021 11:15:07
Zuletzt bearbeitet 21.11.2024 06:11:42
Quelle security@zyxel.com.tw
Teams Watchlist Login
Unerledigt Login

A vulnerability in the TFTP client of Zyxel GS1900 series firmware, XGS1210 series firmware, and XGS1250 series firmware, which could allow an authenticated LAN user to execute arbitrary OS commands via the GUI of the vulnerable device.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Zyxel ≫ Gs1900-8 Firmware Version < 2.70\(aahh.0\)-20211208

Zyxel ≫ Gs1900-8 Version-

Zyxel ≫ Gs1900-8hp Firmware Version < 2.70\(aahi.0\)-20211208

Zyxel ≫ Gs1900-8hp Version-

Zyxel ≫ Gs1900-10hp Firmware Version < 2.70\(aazi.0\)-20211208

Zyxel ≫ Gs1900-10hp Version-

Zyxel ≫ Gs1900-16 Firmware Version < 2.70\(aahj.0\)-20211208

Zyxel ≫ Gs1900-16 Version-

Zyxel ≫ Gs1900-24e Firmware Version < 2.70\(aahk.0\)-20211208

Zyxel ≫ Gs1900-24e Version-

Zyxel ≫ Gs1900-24ep Firmware Version < 2.70\(abto.0\)-20211208

Zyxel ≫ Gs1900-24ep Version-

Zyxel ≫ Gs1900-24 Firmware Version < 2.70\(aahl.0\)-20211208

Zyxel ≫ Gs1900-24 Version-

Zyxel ≫ Gs1900-24hp Firmware Version < 2.70\(aahm.0\)-20211208

Zyxel ≫ Gs1900-24hp Version-

Zyxel ≫ Gs1900-24hpv2 Firmware Version < 2.70\(aatp.0\)-20211208

Zyxel ≫ Gs1900-24hpv2 Version-

Zyxel ≫ Gs1900-48 Firmware Version < 2.70\(aahn.0\)-20211208

Zyxel ≫ Gs1900-48 Version-

Zyxel ≫ Gs1900-48hp Firmware Version < 2.70\(aaho.0\)-20211208

Zyxel ≫ Gs1900-48hp Version-

Zyxel ≫ Gs1900-48hpv2 Firmware Version < 2.70\(abtq.0\)-20211208

Zyxel ≫ Gs1900-48hpv2 Version-

Zyxel ≫ Xgs1210-12 Firmware Version < 1.00\(abty.5\)c0

Zyxel ≫ Xgs1210-12 Version-

Zyxel ≫ Xgs1250-12 Firmware Version < 1.00\(abwe.1\)c0

Zyxel ≫ Xgs1250-12 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.218

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8	2.1	5.9	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.7	5.1	10	AV:A/AC:L/Au:S/C:C/I:C/A:C
security@zyxel.com.tw	6.8	0.9	5.9	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://www.zyxel.com/support/Zyxel_security_advisory_for_OS_command_injection_vulnerabilities_of_switches.shtml

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-35031

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-35031

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-35031

EUVD