CVE-2024-7261

EPSS 2.81%
Published 03.09.2024 03:15:03
Last modified 13.09.2024 19:39:40
Source security@zyxel.com.tw
Teams watchlist Login
Open Login

The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70(ABVT.4) and earlier, WAC500 firmware version 6.70(ABVS.4) 

and earlier, WAX655E firmware version 7.00(ACDO.1) and earlier, WBE530 firmware version 7.00(ACLE.1) 

and earlier, and USG LITE 60AX firmware version V2.00(ACIP.2) could allow an unauthenticated attacker to execute OS commands by sending a crafted cookie to a vulnerable device.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Zyxel ≫ Nwa110ax Firmware Version < 7.00\(abtg.2\)

Zyxel ≫ Nwa110ax Version-

Zyxel ≫ Nwa1123-ac Pro Firmware Version < 6.28\(abhd.3\)

Zyxel ≫ Nwa1123-ac Pro Version-

Zyxel ≫ Nwa1123acv3 Firmware Version < 6.70\(abvt.5\)

Zyxel ≫ Nwa1123acv3 Version-

Zyxel ≫ Nwa130be Firmware Version < 7.00\(acil.2\)

Zyxel ≫ Nwa130be Version-

Zyxel ≫ Nwa210ax Firmware Version < 7.00\(abtd.2\)

Zyxel ≫ Nwa210ax Version-

Zyxel ≫ Nwa220ax-6e Firmware Version < 7.00\(acco.2\)

Zyxel ≫ Nwa220ax-6e Version-

Zyxel ≫ Nwa50ax Firmware Version < 7.00\(abyw.2\)

Zyxel ≫ Nwa50ax Version-

Zyxel ≫ Nwa50ax Pro Firmware Version < 7.00\(acge.2\)

Zyxel ≫ Nwa50ax Pro Version-

Zyxel ≫ Nwa55axe Firmware Version < 7.00\(abzl.2\)

Zyxel ≫ Nwa55axe Version-

Zyxel ≫ Nwa90ax Firmware Version < 7.00\(accv.2\)

Zyxel ≫ Nwa90ax Version-

Zyxel ≫ Nwa90ax Pro Firmware Version < 7.00\(acgf.2\)

Zyxel ≫ Nwa90ax Pro Version-

Zyxel ≫ Usg Lite 60ax Firmware Version < v2.00\(acip.3\)

Zyxel ≫ Usg Lite 60ax Version-

Zyxel ≫ Wac500 Firmware Version < 6.70\(abvs.5\)

Zyxel ≫ Wac500 Version-

Zyxel ≫ Wac500h Firmware Version < 6.70\(abwa.5\)

Zyxel ≫ Wac500h Version-

Zyxel ≫ Wac6103d-i Firmware Version < 6.28\(aaxh.3\)

Zyxel ≫ Wac6103d-i Version-

Zyxel ≫ Wac6502d-s Firmware Version < 6.28\(aase.3\)

Zyxel ≫ Wac6502d-s Version-

Zyxel ≫ Wac6503d-s Firmware Version < 6.28\(aasf.3\)

Zyxel ≫ Wac6503d-s Version-

Zyxel ≫ Wac6552d-s Firmware Version < 6.28\(abio.3\)

Zyxel ≫ Wac6552d-s Version-

Zyxel ≫ Wac6553d-e Firmware Version < 6.28\(aasg.3\)

Zyxel ≫ Wac6553d-e Version-

Zyxel ≫ Wax300h Firmware Version < 7.00\(achf.2\)

Zyxel ≫ Wax300h Version-

Zyxel ≫ Wax510d Firmware Version < 7.00\(abtf.2\)

Zyxel ≫ Wax510d Version-

Zyxel ≫ Wax610d Firmware Version < 7.00\(abte.2\)

Zyxel ≫ Wax610d Version-

Zyxel ≫ Wax620d-6e Firmware Version < 7.00\(accn.2\)

Zyxel ≫ Wax620d-6e Version-

Zyxel ≫ Wax630s Firmware Version < 7.00\(abzd.2\)

Zyxel ≫ Wax630s Version-

Zyxel ≫ Wax640s-6e Firmware Version < 7.00\(accm.2\)

Zyxel ≫ Wax640s-6e Version-

Zyxel ≫ Wax650s Firmware Version < 7.00\(abrm.2\)

Zyxel ≫ Wax650s Version-

Zyxel ≫ Wax655e Firmware Version < 7.00\(acdo.2\)

Zyxel ≫ Wax655e Version-

Zyxel ≫ Wbe530 Firmware Version < 7.00\(acle.2\)

Zyxel ≫ Wbe530 Version-

Zyxel ≫ Wbe660s Firmware Version < 7.00\(acgg.2\)

Zyxel ≫ Wbe660s Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.81%	0.856

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
security@zyxel.com.tw	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-os-command-injection-vulnerability-in-aps-and-security-router-devices-09-03-2024

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-7261

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-7261

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-7261

EUVD