CVE-2023-22916

The configuration parser of Zyxel ATP series firmware versions 5.10 through 5.35, USG FLEX series firmware versions 5.00 through 5.35, USG FLEX 50(W) firmware versions 5.10 through 5.35, USG20(W)-VPN firmware versions 5.10 through 5.35, and VPN series firmware versions 5.00 through 5.35, which fails to properly sanitize user input. A remote unauthenticated attacker could leverage the vulnerability to modify device configuration data, resulting in DoS conditions on an affected device if the attacker could trick an authorized administrator to switch the management mode to the cloud mode.

CVSS v3 8.1 HIGH

8.1^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-of-firewalls-and-aps	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_100:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_100w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_100w:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_200:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_50:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_50w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_50w:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_500:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:zyxel:usg_flex_700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_flex_700:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:zyxel:vpn100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:vpn100:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:zyxel:vpn1000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:vpn1000:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:zyxel:vpn300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:vpn300:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:zyxel:vpn50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:vpn50:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:zyxel:usg_20w-vpn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:usg_20w-vpn:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:zyxel:atp100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:atp100:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:zyxel:atp100w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:atp100w:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:zyxel:atp200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:atp200:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:zyxel:atp500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:atp500:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:zyxel:atp700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:atp700:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:zyxel:atp800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:atp800:-:*:*:*:*:*:*:*

History

04 May 2023, 19:35

Type	Values Removed	Values Added
CWE		NVD-CWE-noinfo
CPE		cpe:2.3:o:zyxel:usg_20w-vpn_firmware:::::::: cpe:2.3:o:zyxel:usg_flex_100w_firmware:::::::: cpe:2.3:o:zyxel:vpn300_firmware:::::::: cpe:2.3:o:zyxel:atp100w_firmware:::::::: cpe:2.3:h:zyxel:usg_flex_200:-:::::::* cpe:2.3:h:zyxel:usg_20w-vpn:-:::::::* cpe:2.3:o:zyxel:usg_flex_100_firmware:::::::: cpe:2.3:h:zyxel:vpn50:-:::::::* cpe:2.3:o:zyxel:atp200_firmware:::::::: cpe:2.3:h:zyxel:atp500:-:::::::* cpe:2.3:o:zyxel:atp500_firmware:::::::: cpe:2.3:h:zyxel:usg_flex_700:-:::::::* cpe:2.3:h:zyxel:usg_flex_50w:-:::::::* cpe:2.3:h:zyxel:vpn300:-:::::::* cpe:2.3:o:zyxel:usg_flex_500_firmware:::::::: cpe:2.3:h:zyxel:vpn100:-:::::::* cpe:2.3:o:zyxel:atp800_firmware:::::::: cpe:2.3:h:zyxel:atp800:-:::::::* cpe:2.3:o:zyxel:usg_flex_50_firmware:::::::: cpe:2.3:o:zyxel:usg_flex_50w_firmware:::::::: cpe:2.3:h:zyxel:atp100:-:::::::* cpe:2.3:h:zyxel:vpn1000:-:::::::* cpe:2.3:o:zyxel:vpn50_firmware:::::::: cpe:2.3:o:zyxel:atp700_firmware:::::::: cpe:2.3:h:zyxel:atp100w:-:::::::* cpe:2.3:h:zyxel:usg_flex_50:-:::::::* cpe:2.3:h:zyxel:atp200:-:::::::* cpe:2.3:h:zyxel:usg_flex_100:-:::::::* cpe:2.3:o:zyxel:usg_flex_200_firmware:::::::: cpe:2.3:h:zyxel:atp700:-:::::::* cpe:2.3:o:zyxel:vpn100_firmware:::::::: cpe:2.3:o:zyxel:usg_flex_700_firmware:::::::: cpe:2.3:h:zyxel:usg_flex_500:-:::::::* cpe:2.3:o:zyxel:vpn1000_firmware:::::::: cpe:2.3:o:zyxel:atp100_firmware:::::::: cpe:2.3:h:zyxel:usg_flex_100w:-:::::::*
References	~~(CONFIRM) https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-of-firewalls-and-aps -~~	(CONFIRM) https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-of-firewalls-and-aps - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.1

24 Apr 2023, 17:43

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-04-24 17:15

Updated : 2024-02-04 23:37

NVD link : CVE-2023-22916

Mitre link : CVE-2023-22916

CVE.ORG link : CVE-2023-22916

JSON object : View

Products Affected

zyxel

atp500_firmware
usg_flex_100w_firmware
atp700_firmware
vpn300
vpn1000
usg_20w-vpn_firmware
usg_flex_50
atp700
vpn100
vpn300_firmware
usg_flex_700_firmware
usg_flex_50_firmware
usg_flex_200
usg_20w-vpn
atp500
vpn1000_firmware
atp800
usg_flex_50w
usg_flex_50w_firmware
usg_flex_500_firmware
usg_flex_700
atp100
vpn100_firmware
atp100w_firmware
atp100_firmware
usg_flex_200_firmware
atp200_firmware
atp100w
usg_flex_100_firmware
vpn50
vpn50_firmware
usg_flex_100w
atp200
atp800_firmware
usg_flex_100
usg_flex_500

CWE

NVD-CWE-noinfo CWE-20

Improper Input Validation

8.1 /10