CVE-2023-4473OS Command Injection in Zyxel Nas326 Firmware

CWE-78OS Command Injection6 documents5 sources
Severity
9.8CRITICALNVD
EPSS
32.9%
top 3.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Zyxel Nas326 FirmwareZyxel Nas542 Firmware
Timeline
PublishedNov 30
Latest updateMay 1

Description

A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted URL to a vulnerable device.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

NVDzyxel/nas326_firmware5.21\(aazf.14\)c0
NVDzyxel/nas542_firmware5.21\(abag.11\)c0
CVEListV5zyxel/nas326_firmwareV5.21(AAZF.14)C0
CVEListV5zyxel/nas542_firmwareV5.21(ABAG.11)C0

Patches

Patch: www.zyxel.comPatch: www.zyxel.com

🔴Vulnerability Details

3
CVEList
CVE-2023-4473: A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V52023-11-30
GHSA
GHSA-2h5j-5qmh-v4qh: A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V52023-11-30
VulnCheck
Zyxel nas326_firmware Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')2023

🔍Detection Rules

2
Suricata
ET WEB_SPECIFIC_APPS Zyxel Authentication Bypass Attempt (CVE-2023-4473) - Information Leak via show_sysinfo2024-05-01
Suricata
ET WEB_SPECIFIC_APPS Zyxel Authentication Bypass Attempt (CVE-2023-4473)2024-05-01
CVE-2023-4473 — OS Command Injection in Zyxel | cvebase