A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through 5.35, VPN series firmware versions 4.30 through 5.35, NWA110AX firmware version 6.50(ABTG.2) and earlier versions, WAC500 firmware version 6.50(ABVS.0) and earlier versions, and WAX510D firmware version 6.50(ABTF.2) and earlier versions, which could allow a remote authenticated attacker to retrieve encrypted information of the administrator on an affected device.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0026.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Zyxel ATP series firmware affected
Version Status Constraints
4.32 through 5.35 affected
Zyxel USG FLEX series firmware affected
Version Status Constraints
4.50 through 5.35 affected
Zyxel USG FLEX 50(W) firmware affected
Version Status Constraints
4.16 through 5.35 affected
Zyxel USG20(W)-VPN firmware affected
Version Status Constraints
4.16 through 5.35 affected
Zyxel VPN series firmware affected
Version Status Constraints
4.30 through 5.35 affected
Zyxel NWA110AX firmware affected
Version Status Constraints
<= 6.50(ABTG.2) affected
Zyxel WAC500 firmware affected
Version Status Constraints
<= 6.50(ABVS.0) affected
Zyxel WAX510D firmware affected
Version Status Constraints
<= 6.50(ABTF.2) affected

Configuration 1 [-]

AND
cpe:2.3:o:zyxel:atp200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:atp200:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:zyxel:atp100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:atp100:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:zyxel:atp700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:atp700:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:zyxel:atp500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:atp500:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:zyxel:atp100w_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:atp100w:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:zyxel:atp800_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:atp800:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:zyxel:usg_flex_100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_100:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:zyxel:usg_flex_50_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_50:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:zyxel:usg_flex_200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_200:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:zyxel:usg_flex_500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_500:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:zyxel:usg_flex_700_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_700:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:zyxel:usg_flex_100w_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_100w:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:zyxel:usg_20w-vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_20w-vpn:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:zyxel:usg_flex_50w_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_flex_50w:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:zyxel:usg20-vpn_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg20-vpn:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:zyxel:vpn100_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vpn100:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:zyxel:vpn1000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vpn1000:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:zyxel:vpn300_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vpn300:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:zyxel:vpn50_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vpn50:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:zyxel:nap203_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nap203:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:zyxel:nap303_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nap303:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:zyxel:nap353_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nap353:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:zyxel:nwa110ax_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa110ax:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:zyxel:nwa1123-ac_hd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1123-ac_hd:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:zyxel:nwa1123-ac-pro_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1123-ac-pro:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:o:zyxel:nwa1123acv3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1123acv3:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND
cpe:2.3:o:zyxel:nwa210ax_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa210ax:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND
cpe:2.3:o:zyxel:nwa220ax-6e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa220ax-6e:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND
cpe:2.3:o:zyxel:nwa50ax_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa50ax:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND
cpe:2.3:o:zyxel:nwa50ax-pro_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa50ax-pro:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND
cpe:2.3:o:zyxel:nwa5123-ac_hd_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa5123-ac_hd:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND
cpe:2.3:o:zyxel:nwa55axe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa55axe:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND
cpe:2.3:o:zyxel:nwa90ax_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa90ax:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND
cpe:2.3:o:zyxel:nwa90ax-pro_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa90ax-pro:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND
cpe:2.3:o:zyxel:wac500_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac500:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND
cpe:2.3:o:zyxel:wac500h_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac500h:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND
cpe:2.3:o:zyxel:wac5302d-sv2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac5302d-sv2:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND
cpe:2.3:o:zyxel:wac6103d-i_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6103d-i:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND
cpe:2.3:o:zyxel:wac6303d-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6303d-s:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND
cpe:2.3:o:zyxel:wac6502d-e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6502d-e:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND
cpe:2.3:o:zyxel:wac6502d-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6502d-s:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND
cpe:2.3:o:zyxel:wac6503d-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6503d-s:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND
cpe:2.3:o:zyxel:wac6552d-s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6552d-s:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND
cpe:2.3:o:zyxel:wac6553d-e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wac6553d-e:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND
cpe:2.3:o:zyxel:wax510d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax510d:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND
cpe:2.3:o:zyxel:wax610d_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax610d:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND
cpe:2.3:o:zyxel:wax620d-6e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax620d-6e:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND
cpe:2.3:o:zyxel:wax630s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax630s:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND
cpe:2.3:o:zyxel:wax640s-6e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax640s-6e:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND
cpe:2.3:o:zyxel:wax650s_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax650s:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND
cpe:2.3:o:zyxel:wax655e_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:wax655e:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Zyxel Subscribe
Atp100 Subscribe
Atp100 Firmware Subscribe
Atp100w Subscribe
Atp100w Firmware Subscribe
Atp200 Subscribe
Atp200 Firmware Subscribe
Atp500 Subscribe
Atp500 Firmware Subscribe
Atp700 Subscribe
Atp700 Firmware Subscribe
Atp800 Subscribe
Atp800 Firmware Subscribe
Nap203 Subscribe
Nap203 Firmware Subscribe
Nap303 Subscribe
Nap303 Firmware Subscribe
Nap353 Subscribe
Nap353 Firmware Subscribe
Nwa110ax Subscribe
Nwa110ax Firmware Subscribe
Nwa1123-ac-pro Subscribe
Nwa1123-ac-pro Firmware Subscribe
Nwa1123-ac Hd Subscribe
Nwa1123-ac Hd Firmware Subscribe
Nwa1123acv3 Subscribe
Nwa1123acv3 Firmware Subscribe
Nwa210ax Subscribe
Nwa210ax Firmware Subscribe
Nwa220ax-6e Subscribe
Nwa220ax-6e Firmware Subscribe
Nwa50ax Subscribe
Nwa50ax-pro Subscribe
Nwa50ax-pro Firmware Subscribe
Nwa50ax Firmware Subscribe
Nwa5123-ac Hd Subscribe
Nwa5123-ac Hd Firmware Subscribe
Nwa55axe Subscribe
Nwa55axe Firmware Subscribe
Nwa90ax Subscribe
Nwa90ax-pro Subscribe
Nwa90ax-pro Firmware Subscribe
Nwa90ax Firmware Subscribe
Usg20-vpn Subscribe
Usg20-vpn Firmware Subscribe
Usg 20w-vpn Subscribe
Usg 20w-vpn Firmware Subscribe
Usg Flex 100 Subscribe
Usg Flex 100 Firmware Subscribe
Usg Flex 100w Subscribe
Usg Flex 100w Firmware Subscribe
Usg Flex 200 Subscribe
Usg Flex 200 Firmware Subscribe
Usg Flex 50 Subscribe
Usg Flex 500 Subscribe
Usg Flex 500 Firmware Subscribe
Usg Flex 50 Firmware Subscribe
Usg Flex 50w Subscribe
Usg Flex 50w Firmware Subscribe
Usg Flex 700 Subscribe
Usg Flex 700 Firmware Subscribe
Vpn100 Subscribe
Vpn1000 Subscribe
Vpn1000 Firmware Subscribe
Vpn100 Firmware Subscribe
Vpn300 Subscribe
Vpn300 Firmware Subscribe
Vpn50 Subscribe
Vpn50 Firmware Subscribe
Wac500 Subscribe
Wac500 Firmware Subscribe
Wac500h Subscribe
Wac500h Firmware Subscribe
Wac5302d-sv2 Subscribe
Wac5302d-sv2 Firmware Subscribe
Wac6103d-i Subscribe
Wac6103d-i Firmware Subscribe
Wac6303d-s Subscribe
Wac6303d-s Firmware Subscribe
Wac6502d-e Subscribe
Wac6502d-e Firmware Subscribe
Wac6502d-s Subscribe
Wac6502d-s Firmware Subscribe
Wac6503d-s Subscribe
Wac6503d-s Firmware Subscribe
Wac6552d-s Subscribe
Wac6552d-s Firmware Subscribe
Wac6553d-e Subscribe
Wac6553d-e Firmware Subscribe
Wax510d Subscribe
Wax510d Firmware Subscribe
Wax610d Subscribe
Wax610d Firmware Subscribe
Wax620d-6e Subscribe
Wax620d-6e Firmware Subscribe
Wax630s Subscribe
Wax630s Firmware Subscribe
Wax640s-6e Subscribe
Wax640s-6e Firmware Subscribe
Wax650s Subscribe
Wax650s Firmware Subscribe
Wax655e Subscribe
Wax655e Firmware Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2023-27020 A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through 5.35, VPN series firmware versions 4.30 through 5.35, NWA110AX firmware version 6.50(ABTG.2) and earlier versions, WAC500 firmware version 6.50(ABVS.0) and earlier versions, and WAX510D firmware version 6.50(ABTF.2) and earlier versions, which could allow a remote authenticated attacker to retrieve encrypted information of the administrator on an affected device.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-of-firewalls-and-aps cve-icon cve-icon
History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Zyxel

Published:

Updated: 2025-02-12T16:01:35.920Z

Reserved: 2023-01-10T00:00:00.000Z

Link: CVE-2023-22918

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-04-24T18:15:09.027

Modified: 2024-11-21T07:45:38.940

Link: CVE-2023-22918

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses