2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2022-26413" ,
"sourceIdentifier" : "security@zyxel.com.tw" ,
"published" : "2022-04-11T13:15:07.763" ,
2024-11-23 15:12:23 +00:00
"lastModified" : "2024-11-21T06:53:54.313" ,
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface."
} ,
{
"lang" : "es" ,
"value" : "Una vulnerabilidad de inyecci\u00f3n de comandos en el programa CGI del firmware de Zyxel VMG3312-T20A versi\u00f3n 5.30(ABFX.5)C0, podr\u00eda permitir a un atacante local autenticado ejecutar comandos arbitrarios del Sistema Operativo en un dispositivo vulnerable por medio de una interfaz LAN"
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
2024-11-23 15:12:23 +00:00
"source" : "security@zyxel.com.tw" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 8.0 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "ADJACENT_NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 2.1 ,
"impactScore" : 5.9
} ,
{
2024-11-23 15:12:23 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 8.0 ,
"baseSeverity" : "HIGH" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "ADJACENT_NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "HIGH"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 2.1 ,
"impactScore" : 5.9
}
] ,
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:A/AC:L/Au:S/C:C/I:C/A:C" ,
2024-11-23 15:12:23 +00:00
"baseScore" : 7.7 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "ADJACENT_NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "SINGLE" ,
"confidentialityImpact" : "COMPLETE" ,
"integrityImpact" : "COMPLETE" ,
2024-11-23 15:12:23 +00:00
"availabilityImpact" : "COMPLETE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "HIGH" ,
"exploitabilityScore" : 5.1 ,
"impactScore" : 10.0 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
2024-11-23 15:12:23 +00:00
"source" : "security@zyxel.com.tw" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"description" : [
{
"lang" : "en" ,
"value" : "CWE-78"
}
]
} ,
{
2024-11-23 15:12:23 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"description" : [
{
"lang" : "en" ,
"value" : "CWE-78"
}
]
}
] ,
"configurations" : [
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg3312-t20a_firmware:5.30\\(abfx.5\\)c0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "EF433563-7AA7-41BF-9ECF-F1E1B9C5C1C4"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg3312-t20a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "59AF3952-10E9-4AC8-BA25-BA5C3C203063"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:emg3525-t50b_firmware:*:*:*:*:america:*:*:*" ,
"versionEndExcluding" : "5.50\\(abpm.6\\)c0" ,
"matchCriteriaId" : "FE982B82-95DD-40FA-8A7E-F6EB44323692"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:emg3525-t50b_firmware:*:*:*:*:emea:*:*:*" ,
"versionEndExcluding" : "5.50\\(abpm.6\\)c0" ,
"matchCriteriaId" : "EB52E6B4-08EF-4427-AA01-E783C9F1FCF4"
}
]
2024-11-23 15:12:23 +00:00
} ,
2023-04-24 12:24:31 +02:00
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
2024-11-23 15:12:23 +00:00
"criteria" : "cpe:2.3:h:zyxel:emg3525-t50b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9259E2F6-885D-4B44-8D40-20758DA599D2"
2023-04-24 12:24:31 +02:00
}
]
2024-11-23 15:12:23 +00:00
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
2023-04-24 12:24:31 +02:00
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:emg5523-t50b_firmware:*:*:*:*:america:*:*:*" ,
"versionEndExcluding" : "5.50\\(abpm.6\\)c0" ,
"matchCriteriaId" : "A48A0914-787A-4884-909E-3332DD472873"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:emg5523-t50b_firmware:*:*:*:*:emea:*:*:*" ,
"versionEndExcluding" : "5.50\\(abpm.6\\)c0" ,
"matchCriteriaId" : "1B417B43-F5C6-4551-BD4E-7E2706BCF8B9"
}
]
2024-11-23 15:12:23 +00:00
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:emg5523-t50b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F3ECE0EB-C429-4716-ABFB-73540847EB9E"
}
]
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:emg5723-t50k_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.50\\(abom.7\\)c0" ,
"matchCriteriaId" : "9FAE1EA0-A113-4324-8347-838A01B00437"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:emg5723-t50k:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B18982B2-E575-478E-A2B4-0932DE329056"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:emg6726-b10a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.13\\(abnp.7\\)c0" ,
"matchCriteriaId" : "1D931985-C10C-41C4-B459-FC454DE8C9FA"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:emg6726-b10a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "304D3B33-F7EC-4EB3-B6EF-6BEB2112F9C0"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg1312-t20b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.50\\(absb.5\\)c0" ,
"matchCriteriaId" : "5252A997-772F-4785-8440-B7909A9860A8"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg1312-t20b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "37348176-08FD-40F0-9903-05ABABBB1F5C"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg3625-t50b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.50\\(abpm.6\\)c0" ,
"matchCriteriaId" : "331ACFBC-2467-45CC-82A3-717C93D34D02"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg3625-t50b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "BB5E8468-D12F-4CBE-AC7E-27D5A928A85A"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg3927-b50a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abmt.6\\)c0" ,
"matchCriteriaId" : "291B5E34-3870-46DD-9A74-2D2FFD1B6E52"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg3927-b50a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F814684F-D45D-4EF8-A294-A6122B7A760B"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg3927-b50b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.13\\(ably.7\\)c0" ,
"matchCriteriaId" : "6D55734D-F4F4-4C97-BC31-7B532DA47EA9"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg3927-b50b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "94BE349D-EC30-4EB7-8B68-EA7223364A4B"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg3927-b60a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abmt.6\\)c0" ,
"matchCriteriaId" : "3D4293E4-AE61-4978-A750-D5FAF442D67B"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg3927-b60a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "99C11501-33FD-4421-909E-E6533EF6F03A"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg3927-t50k_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.50\\(abom.7\\)c0" ,
"matchCriteriaId" : "8201B9D7-433E-4D79-9115-FA1F25223121"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg3927-t50k:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1B33AE56-3948-494B-9E23-54D939DF0D3E"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg4927-b50a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.13\\(ably.7\\)c0" ,
"matchCriteriaId" : "543081DE-AEC8-4658-AAE4-63EE1A261645"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg4927-b50a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C0EE70D2-51BB-4E45-8995-655C1394C440"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg8623-t50b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.50\\(abpm.6\\)c0" ,
"matchCriteriaId" : "1A24F15A-1F77-413C-9BD1-CFBE890ACD31"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg8623-t50b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C3535B63-318C-4EB5-ADC8-0AF3FB443DFC"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg8825-b50a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abmt.6\\)c0" ,
"matchCriteriaId" : "DDACBF89-DCA8-43F0-91BF-8A29E63B33BD"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg8825-b50a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "ED88F55C-C687-4413-BEC8-DEB15D6AA2F2"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg8825-b50b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abny.7\\)c0" ,
"matchCriteriaId" : "D8B10EC6-E8B2-4619-8F9D-10516569B806"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg8825-b50b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7D66B624-EAAA-4C2D-BBE6-D0A0ED6BD5F1"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg8825-t50k_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.50\\(abom.7\\)c0" ,
"matchCriteriaId" : "C0933D98-49F6-4B0F-9D04-2149BFB7FB7F"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg8825-t50k:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "D4C2320B-52DF-4F86-86D2-42FB62337773"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg8825-b60a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abmt.6\\)c0" ,
"matchCriteriaId" : "502EBC83-0E8D-4B13-BA0D-040B40C58A1D"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg8825-b60a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7654E872-36CA-4502-9B91-01741D6E4F46"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:vmg8825-b60b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abny.7\\)c0" ,
"matchCriteriaId" : "7B963909-27C2-43A6-9479-EE2F863FC817"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:vmg8825-b60b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6368C175-7D1B-4F70-B11F-B8CE7FBE0B82"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:xmg3927-b50a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abmt.6\\)c0" ,
"matchCriteriaId" : "81E3153A-08CF-4F02-97EA-B68751EE7791"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:xmg3927-b50a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "99B19AC3-D417-48C7-8C18-F5516794260B"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:xmg8825-b50a_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abmt.6\\)c0" ,
"matchCriteriaId" : "C0E58CAE-3737-406F-9647-B59598A6733A"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:xmg8825-b50a:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4861B59F-AB86-4A4D-A04C-6EE68EC4A206"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:dx5401-b0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abyo.1\\)c0" ,
"matchCriteriaId" : "4C91B77C-EC30-4C88-AAEB-330B7A3E0470"
2023-04-24 12:24:31 +02:00
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
2024-11-23 15:12:23 +00:00
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:dx5401-b0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B293E564-2C48-442A-A415-34383DF3ADBA"
2023-04-24 12:24:31 +02:00
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:ex3510-b0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abup.4\\)c1" ,
"matchCriteriaId" : "5C6781DA-4800-47E9-BB67-89ACC0F43D04"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:ex3510-b0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E0455EC5-B783-4CDB-9DC0-D8EF377A5F2C"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:ex5401-b0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abyo.1\\)c0" ,
"matchCriteriaId" : "B3B44185-756B-4B9B-A377-DB3191606702"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:ex5401-b0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6B1B9D0C-AB6C-43E1-BFCA-50EF231510FC"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:ex5501-b0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abry.2\\)c0" ,
"matchCriteriaId" : "291AA836-D0F7-4AD7-8D76-0F1A5B9ECCCF"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:ex5501-b0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "88B8CDD0-E73A-4FAA-9964-D8C09949CB32"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:ax7501-b0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abpc.1\\)c0" ,
"matchCriteriaId" : "5EF7BC18-210C-4E21-A850-61A8D6B701BE"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:ax7501-b0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "78473083-F702-4B81-AAA0-B66A0984FF6B"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:ep240p_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.40\\(abh.0\\)c0" ,
"matchCriteriaId" : "457C1585-BD6F-4C3A-953D-96194EDD065E"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:ep240p:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "91367DDE-F430-42F7-B4F2-28AEF7FDCB12"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:pm7300-t0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.42\\(acbc.1\\)c0" ,
"matchCriteriaId" : "D4E0639D-0861-4A10-AFA6-8251AD2217BB"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:pm7300-t0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8AD1E2E3-2BB8-4CB3-AF81-C916312FE361"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:pmg5317-t20b_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.40\\(abki.4\\)c0" ,
"matchCriteriaId" : "20FA4B81-5FE7-43D5-8A96-A1BF0CBA8CC6"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:pmg5317-t20b:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9F1334B5-FC76-412F-A7EF-02EEEE677460"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:pmg5617ga_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.40\\(abna.2\\)c0" ,
"matchCriteriaId" : "E53F230A-806F-413B-BE4B-2A95645751DF"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:pmg5617ga:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "9C1B0834-3398-41B0-9A14-7D97768732B4"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:pmg5617-t20b2_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.41\\(acbb.1\\)c0" ,
"matchCriteriaId" : "7FFBE0FC-A355-4E32-A606-4130B2581CE1"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:pmg5617-t20b2:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B35005D7-D8E4-4BC5-A59C-6A69255E7EC7"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:pmg5622ga_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.40\\(abnb.2\\)c0" ,
"matchCriteriaId" : "09514F76-89EC-4ADF-9400-F14BB917EF97"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:pmg5622ga:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "840AF834-B7A6-4ACA-BAB9-996D87476D3D"
}
]
}
]
} ,
{
"operator" : "AND" ,
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:zyxel:px7501-b0_firmware:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.17\\(abpc.1\\)c0" ,
"matchCriteriaId" : "C655ED2E-A791-40B7-99C5-FF3F874A2A27"
}
]
} ,
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : false ,
"criteria" : "cpe:2.3:h:zyxel:px7501-b0:-:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "076C6AD3-E8A3-4639-805E-20FA866BDFDD"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://www.zyxel.com/support/OS-command-injection-and-buffer-overflow-vulnerabilities-of-CPE-and-ONTs.shtml" ,
"source" : "security@zyxel.com.tw" ,
"tags" : [
"Vendor Advisory"
]
2024-11-23 15:12:23 +00:00
} ,
{
"url" : "https://www.zyxel.com/support/OS-command-injection-and-buffer-overflow-vulnerabilities-of-CPE-and-ONTs.shtml" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
2023-04-24 12:24:31 +02:00
}
]
}
