Filtered by vendor Zyxel Subscriptions
Filtered by product Usg Flex 200hp Firmware Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-9677 1 Zyxel 6 Usg Flex 100h Firmware, Usg Flex 100hp Firmware, Usg Flex 200h Firmware and 3 more 2024-10-23 5.5 Medium
The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H series uOS firmware version V1.21 and earlier versionsĀ could allow an authenticated local attacker to gain privilege escalation by stealing the authentication token of a login administrator. Note that this attack could be successful only if the administrator has not logged out.