CVE-2023-34141 - OpenCVE

A command injection vulnerability in the access point (AP) management feature of the Zyxel ATP series firmware versions 5.00 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5.00 through 5.36 Patch 2, USG20(W)-VPN series firmware versions 5.00 through 5.36 Patch 2, VPN series firmware versions 5.00 through 5.36 Patch 2, NXC2500 firmware versions 6.10(AAIG.0) through 6.10(AAIG.3), and NXC5500 firmware versions 6.10(AAOS.0) through 6.10(AAOS.4), could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affected device if the attacker could trick an authorized administrator to add their IP address to the managed AP list in advance.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Zyxel	Nxc2500 Nxc2500 Firmware Nxc5500 Nxc5500 Firmware Usg 20w-vpn Usg 20w-vpn Firmware Usg 2200-vpn Usg 2200-vpn Firmware Usg Flex 100 Usg Flex 100 Firmware Usg Flex 100w Usg Flex 100w Firmware Usg Flex 200 Usg Flex 200 Firmware Usg Flex 50 Usg Flex 500 Usg Flex 500 Firmware Usg Flex 50 Firmware Usg Flex 50w Usg Flex 50w Firmware Usg Flex 700 Usg Flex 700 Firmware Zywall Atp100 Zywall Atp100 Firmware Zywall Atp100w Zywall Atp100w Firmware Zywall Atp200 Zywall Atp200 Firmware Zywall Atp500 Zywall Atp500 Firmware Zywall Atp700 Zywall Atp700 Firmware Zywall Atp800 Zywall Atp800 Firmware Zywall Vpn100 Zywall Vpn100 Firmware Zywall Vpn2s Zywall Vpn2s Firmware Zywall Vpn300 Zywall Vpn300 Firmware Zywall Vpn50 Zywall Vpn50 Firmware Zywall Vpn 100 Zywall Vpn 100 Firmware Zywall Vpn 300 Zywall Vpn 300 Firmware Zywall Vpn 50 Zywall Vpn 50 Firmware

Configuration 1 [-]

AND

cpe:2.3:h:zyxel:usg_20w-vpn:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_20w-vpn_firmware:*:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:zyxel:usg_2200-vpn:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_2200-vpn_firmware:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:zyxel:usg_flex_100:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_100_firmware:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:h:zyxel:usg_flex_100w:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_100w_firmware:*:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:h:zyxel:usg_flex_200:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_200_firmware:*:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:h:zyxel:usg_flex_50:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_50_firmware:*:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:h:zyxel:usg_flex_500:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_500_firmware:*:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:h:zyxel:usg_flex_50w:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_50w_firmware:*:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:h:zyxel:usg_flex_700:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:usg_flex_700_firmware:*:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:h:zyxel:zywall_atp100:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:zywall_atp100_firmware:*:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:h:zyxel:zywall_atp100w:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:zywall_atp100w_firmware:*:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:h:zyxel:zywall_atp200:-:*:*:*:*:*:*:*

cpe:2.3:o:zyxel:zywall_atp200_firmware:*:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:zyxel:zywall_atp500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_atp500:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:zyxel:zywall_atp700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_atp700:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:zyxel:zywall_atp800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_atp800:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn100:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn2s_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn2s:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn300:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn50:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn_100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn_100:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn_300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn_300:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:zyxel:zywall_vpn_50_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:zywall_vpn_50:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:zyxel:nxc2500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:nxc2500:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:zyxel:nxc5500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:zyxel:nxc5500:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-wlan-controllers

History

No history.

MITRE

Status: PUBLISHED

Assigner: Zyxel

Published: 2023-07-17T17:56:26.818Z

Updated: 2024-08-02T16:01:53.937Z

Reserved: 2023-05-26T03:44:51.339Z

Link: CVE-2023-34141

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-07-17T18:15:09.770

Modified: 2023-07-26T21:29:39.207

Link: CVE-2023-34141

Redhat

No data.

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Affected Vendors & Products

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object