CVE-2022-0342: An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.20 through 4.70, USG FLEX series firmware versions…

critical9.8CVSS 3.1

AVNACLPRNUINSUCHIHAH

EXPLOIT

An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.20 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.32 through 5.20, VPN series firmware versions 4.30 through 5.20, and NSG series firmware versions V1.20 through V1.33 Patch 4, which could allow an attacker to bypass the web authentication and obtain administrative access of the device.

Affected

29 ranges· showing 25

Vendor	Product	Version range	Fixed in
zyxel	atp100_firmware	4.32 – 5.20	—
zyxel	atp100w_firmware	4.32 – 5.20	—
zyxel	atp200_firmware	4.32 – 5.20	—
zyxel	atp500_firmware	4.32 – 5.20	—
zyxel	atp700_firmware	4.32 – 5.20	—
zyxel	atp800_firmware	4.32 – 5.20	—
zyxel	atp_series_firmware	—	—
zyxel	nsg300_firmware	—	—
zyxel	nsg300_firmware	>= 1.20 < 1.33	1.33
zyxel	nsg_series_firmware	—	—
zyxel	usg40_firmware	>= 4.20 < 4.71	4.71
zyxel	usg40w_firmware	>= 4.20 < 4.71	4.71
zyxel	usg60_firmware	>= 4.20 < 4.71	4.71
zyxel	usg60w_firmware	>= 4.20 < 4.71	4.71
zyxel	usg_flex_100_firmware	4.50 – 5.20	—
zyxel	usg_flex_100w_firmware	4.50 – 5.20	—
zyxel	usg_flex_200_firmware	4.50 – 5.20	—
zyxel	usg_flex_500_firmware	4.50 – 5.20	—
zyxel	usg_flex_700_firmware	4.50 – 5.20	—
zyxel	usg_flex_series_firmware	—	—
zyxel	usg_zywall_series_firmware	—	—
zyxel	vpn1000_firmware	>= 4.30 < 5.21	5.21
zyxel	vpn100_firmware	>= 4.30 < 5.21	5.21
zyxel	vpn300_firmware	>= 4.30 < 5.21	5.21
zyxel	vpn50_firmware	>= 4.30 < 5.21	5.21

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

vulncheck9.8CRITICAL