Zyxel ≫ Zywall Usg 100 Firmware

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

9.8

CVE-2023-28771

Warning Exploit

EPSS 94.35%
Published 25.04.2023 02:15:08
Last modified 13.03.2025 16:16:59

Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35, w...

8.8

CVE-2017-17550

Exploit

EPSS 0.15%
Published 10.11.2018 22:29:00
Last modified 21.11.2024 03:18:08

ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected by a CSRF vulnerability via a cgi-bin/zysh-cgi cmd action to add a user account. This account's access could, for example, subsequently be used for stored XSS.