Link | Resource |
---|---|
http://packetstormsecurity.com/files/168202/Zyxel-Firewall-SUID-Binary-Privilege-Escalation.html | Exploit Third Party Advisory VDB Entry |
https://www.zyxel.com/support/Zyxel-security-advisory-authenticated-directory-traversal-vulnerabilities-of-firewalls.shtml | Vendor Advisory |
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
Configuration 19 (hide)
AND |
|
Configuration 20 (hide)
AND |
|
Configuration 21 (hide)
AND |
|
Configuration 22 (hide)
AND |
|
Configuration 23 (hide)
AND |
|
Configuration 24 (hide)
AND |
|
Configuration 25 (hide)
AND |
|
13 Dec 2022, 15:38
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) http://packetstormsecurity.com/files/168202/Zyxel-Firewall-SUID-Binary-Privilege-Escalation.html - Exploit, Third Party Advisory, VDB Entry |
31 Aug 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Jul 2022, 22:02
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:zyxel:usg20-vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:atp100_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_700_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:atp100w_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg40w_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg60_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn300:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg20-vpn:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn50_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_100w:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn1000_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn100:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_500:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:atp700:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:zywall_1100:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_200_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:zywall_310:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg20w-vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_500_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:atp800:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:atp100w:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:atp100:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_200:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:zywall_110:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:zywall_1100_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg60:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_50w:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn100_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn50:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn1000:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:atp200:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_2200-vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:atp500:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:zywall_110_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_100w_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn300_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg60w_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg20w-vpn:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg40w:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_700:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:zywall_310_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:atp200_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg40_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:atp700_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:atp500_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg40:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_2200-vpn:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:atp800_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg60w:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_50w_firmware:*:*:*:*:*:*:*:* |
|
References | (CONFIRM) https://www.zyxel.com/support/Zyxel-security-advisory-authenticated-directory-traversal-vulnerabilities-of-firewalls.shtml - Vendor Advisory | |
CWE | CWE-269 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
19 Jul 2022, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Published : 2022-07-19 06:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-30526
Mitre link : CVE-2022-30526
CVE.ORG link : CVE-2022-30526
JSON object : View
zyxel
- usg_flex_200_firmware
- usg60w
- usg40
- atp100w_firmware
- atp800_firmware
- usg20-vpn
- usg60
- vpn50
- atp700
- zywall_310
- atp800
- usg_flex_50w_firmware
- usg_flex_200
- usg60w_firmware
- atp200_firmware
- usg_2200-vpn
- vpn300
- atp500
- vpn100
- vpn1000_firmware
- usg40_firmware
- usg_2200-vpn_firmware
- usg20w-vpn
- atp100w
- usg40w
- atp100
- zywall_310_firmware
- zywall_110
- atp500_firmware
- usg_flex_500_firmware
- usg20w-vpn_firmware
- zywall_1100
- zywall_1100_firmware
- vpn100_firmware
- vpn50_firmware
- usg_flex_50w
- usg40w_firmware
- zywall_110_firmware
- atp200
- usg_flex_500
- usg_flex_700_firmware
- usg_flex_100w_firmware
- vpn1000
- usg_flex_700
- usg_flex_100w
- atp100_firmware
- atp700_firmware
- vpn300_firmware
- usg60_firmware
- usg20-vpn_firmware
Improper Privilege Management