Zyxel

Usg 2200-vpn Firmware

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-33011

  • EPSS 0.12%
  • Veröffentlicht 17.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:04:24

A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5.10 through 5.36 Patch 2, USG20(W)-VPN series fi...

8.8

CVE-2023-33012

  • EPSS 5.08%
  • Veröffentlicht 17.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:04:24

A command injection vulnerability in the configuration parser of the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5.10 through 5.36...

8

CVE-2023-34138

  • EPSS 0.11%
  • Veröffentlicht 17.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:37

A command injection vulnerability in the hotspot management feature of the Zyxel ATP series firmware versions 4.60 through 5.36 Patch 2, USG FLEX series firmware versions 4.60 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 4.60 throug...

8.8

CVE-2023-34139

  • EPSS 0.22%
  • Veröffentlicht 17.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:37

A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 and VPN series firmware versions 4.20 through 5.36 Patch 2, could allow an unauthenticated, LAN-based att...

6.5

CVE-2023-34140

  • EPSS 0.1%
  • Veröffentlicht 17.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:38

A buffer overflow vulnerability in the Zyxel ATP series firmware versions 4.32 through 5.36 Patch 2, USG FLEX series firmware versions 4.50 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 4.16 through 5.36 Patch 2, USG20(W)-VPN series ...

8

CVE-2023-34141

  • EPSS 0.11%
  • Veröffentlicht 17.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:38

A command injection vulnerability in the access point (AP) management feature of the Zyxel ATP series firmware versions 5.00 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5...

8.8

CVE-2023-28767

  • EPSS 0.12%
  • Veröffentlicht 17.07.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 07:55:58

The configuration parser fails to sanitize user-controlled input in the Zyxel ATP series firmware versions 5.10 through 5.36, USG FLEX series firmware versions 5.00 through 5.36,  USG FLEX 50(W) series firmware versions 5.10 through 5.36, USG20(W)-...

6.5

CVE-2022-2030

  • EPSS 1.26%
  • Veröffentlicht 19.07.2022 06:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:12

A directory traversal vulnerability caused by specific character sequences within an improperly sanitized URL was identified in some CGI programs of Zyxel USG FLEX 100(W) firmware versions 4.50 through 5.30, USG FLEX 200 firmware versions 4.50 throug...

7.8

CVE-2022-30526

Exploit
  • EPSS 3.89%
  • Veröffentlicht 19.07.2022 06:15:08
  • Zuletzt bearbeitet 21.11.2024 07:02:52

A privilege escalation vulnerability was identified in the CLI command of Zyxel USG FLEX 100(W) firmware versions 4.50 through 5.30, USG FLEX 200 firmware versions 4.50 through 5.30, USG FLEX 500 firmware versions 4.50 through 5.30, USG FLEX 700 firm...

7.8

CVE-2022-26531

  • EPSS 0.99%
  • Veröffentlicht 24.05.2022 06:15:09
  • Zuletzt bearbeitet 21.11.2024 06:54:07

Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, VPN ser...