admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-07 03:02:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

add : CVE-2022-30525

Browse Source
This commit is contained in:
gaopeng2 2022-05-13 12:01:03 +08:00
parent 5920ceace1
commit 3aef42453c
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
Zyxel/CVE-2022-30525/README.md Normal file
View File

@ -0,0 +1,10 @@
# Zyxel ZTP RCE (CVE-2022-30525)
Several firewalls, such as the Zyxel ATP series, VPN series, and USG FLEX series, have security vulnerabilities. An unauthenticated remote attacker could execute arbitrary code on the affected device as the user nobody, taking control of the server.
FOFA **query rule**: [title="USG FLEX" || title="USG20-VPN" || title="USG20W-VPN" || title="ATP100" || title="ATP200" || title="ATP500"title="ATP700" || title="ATP800"](https://fofa.info/result?qbase64=dGl0bGU9IlVTRyBGTEVYIiB8fCB0aXRsZT0iVVNHMjAtVlBOIiB8fCB0aXRsZT0iVVNHMjBXLVZQTiIgfHwgdGl0bGU9IkFUUDEwMCIgfHwgdGl0bGU9IkFUUDIwMCIgfHwgdGl0bGU9IkFUUDUwMCJ0aXRsZT0iQVRQNzAwIiB8fCB0aXRsZT0iQVRQODAwIg%3D%3D)
# Demo
![Zyxel_ZTP_RCE_CVE_2022_30525](Zyxel_ZTP_RCE_CVE_2022_30525.gif)

BIN
Zyxel/CVE-2022-30525/Zyxel_ZTP_RCE_CVE_2022_30525.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 1019 KiB