Zyxel

Usg 20w-vpn Firmware

19 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-22918

  • EPSS 0.21%
  • Veröffentlicht 24.04.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 07:45:38

A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN...

7.5

CVE-2023-22917

  • EPSS 0.95%
  • Veröffentlicht 24.04.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 07:45:38

A buffer overflow vulnerability in the “sdwan_iface_ipc” binary of Zyxel ATP series firmware versions 5.10 through 5.32, USG FLEX series firmware versions 5.00 through 5.32, USG FLEX 50(W) firmware versions 5.10 through 5.32, USG20(W)-VPN firmware ve...

8.1

CVE-2023-22916

  • EPSS 0.48%
  • Veröffentlicht 24.04.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 07:45:38

The configuration parser of Zyxel ATP series firmware versions 5.10 through 5.35, USG FLEX series firmware versions 5.00 through 5.35, USG FLEX 50(W) firmware versions 5.10 through 5.35, USG20(W)-VPN firmware versions 5.10 through 5.35, and VPN serie...

7.5

CVE-2023-22915

  • EPSS 0.87%
  • Veröffentlicht 24.04.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 07:45:38

A buffer overflow vulnerability in the “fbwifi_forward.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.30 through 5.35, USG20(W)-VPN firmware versions 4.30 through 5.35, and VPN series...

7.8

CVE-2022-26532

  • EPSS 2.2%
  • Veröffentlicht 24.05.2022 06:15:09
  • Zuletzt bearbeitet 21.11.2024 06:54:07

A argument injection vulnerability in the 'packet-trace' CLI command of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, VPN series firmw...

7.8

CVE-2022-26531

  • EPSS 1.56%
  • Veröffentlicht 24.05.2022 06:15:09
  • Zuletzt bearbeitet 21.11.2024 06:54:07

Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, VPN ser...

6.5

CVE-2022-0910

  • EPSS 0.15%
  • Veröffentlicht 24.05.2022 03:15:09
  • Zuletzt bearbeitet 21.11.2024 06:39:39

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions...

6.1

CVE-2022-0734

  • EPSS 0.33%
  • Veröffentlicht 24.05.2022 03:15:09
  • Zuletzt bearbeitet 21.11.2024 06:39:17

A cross-site scripting vulnerability was identified in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.35 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.35 through 5.20, and VPN series...

5.9

CVE-2018-9129

  • EPSS 0.27%
  • Veröffentlicht 15.08.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:01

ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections.