Zyxel

Vpn1000 Firmware

23 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-33010

Warning
  • EPSS 4.39%
  • Published 24.05.2023 13:15:09
  • Last modified 27.01.2025 21:44:33

A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 through 5.36 Patch 1, USG FLEX series firmware versions 4.50 through 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 through 5.36 Patch 1, US...

9.8

CVE-2023-33009

Warning
  • EPSS 4.64%
  • Published 24.05.2023 13:15:09
  • Last modified 27.01.2025 21:44:27

A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions 4.60 through 5.36 Patch 1, USG FLEX series firmware versions 4.60 through 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.60 through 5.36 Patch 1, USG...

9.8

CVE-2023-28771

Warning Exploit
  • EPSS 94.35%
  • Published 25.04.2023 02:15:08
  • Last modified 13.03.2025 16:16:59

Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35, w...

8.8

CVE-2023-27991

  • EPSS 1.03%
  • Published 24.04.2023 18:15:09
  • Last modified 21.11.2024 07:53:53

The post-authentication command injection vulnerability in the CLI command of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN ...

4.8

CVE-2023-27990

  • EPSS 0.15%
  • Published 24.04.2023 18:15:09
  • Last modified 21.11.2024 07:53:53

The cross-site scripting (XSS) vulnerability in Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through...

6.5

CVE-2023-22918

  • EPSS 0.21%
  • Published 24.04.2023 18:15:09
  • Last modified 21.11.2024 07:45:38

A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN...

7.5

CVE-2023-22917

  • EPSS 0.95%
  • Published 24.04.2023 17:15:09
  • Last modified 21.11.2024 07:45:38

A buffer overflow vulnerability in the “sdwan_iface_ipc” binary of Zyxel ATP series firmware versions 5.10 through 5.32, USG FLEX series firmware versions 5.00 through 5.32, USG FLEX 50(W) firmware versions 5.10 through 5.32, USG20(W)-VPN firmware ve...

8.1

CVE-2023-22916

  • EPSS 0.48%
  • Published 24.04.2023 17:15:09
  • Last modified 21.11.2024 07:45:38

The configuration parser of Zyxel ATP series firmware versions 5.10 through 5.35, USG FLEX series firmware versions 5.00 through 5.35, USG FLEX 50(W) firmware versions 5.10 through 5.35, USG20(W)-VPN firmware versions 5.10 through 5.35, and VPN serie...

7.5

CVE-2023-22915

  • EPSS 0.87%
  • Published 24.04.2023 17:15:09
  • Last modified 21.11.2024 07:45:38

A buffer overflow vulnerability in the “fbwifi_forward.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.30 through 5.35, USG20(W)-VPN firmware versions 4.30 through 5.35, and VPN series...

7.2

CVE-2023-22914

  • EPSS 0.92%
  • Published 24.04.2023 17:15:09
  • Last modified 21.11.2024 07:45:38

A path traversal vulnerability in the “account_print.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, and VPN series firmware versions 4.30 through 5.35, which could allow a remote authenticated attacker with administrat...