Exploit for #VU65410 Permissions, Privileges, and Access Controls in ZyXEL Communications Corp. Other software
Vulnerability identifier: #VU65410
Vulnerability risk: Low
CVSSv3.1: 7.8 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Local
Exploits in database: 2
- September 1, 2022
- August 31, 2022
- Zyxel Firewall SUID Binary Privilege Escalation [Metasploit]
Impact: Code execution
Vulnerable software:
USG FLEX 200
Hardware solutions /
Firmware
USG FLEX 100W
Hardware solutions /
Firmware
USG FLEX 500
Hardware solutions /
Firmware
USG FLEX 700
Hardware solutions /
Firmware
USG FLEX 50W
Hardware solutions /
Firmware
USG20W-VPN
Hardware solutions /
Firmware
ATP series
Hardware solutions /
Routers for home users
VPN series
Client/Desktop applications /
Antivirus software/Personal firewalls
USG series
Client/Desktop applications /
Antivirus software/Personal firewalls
ZyWALL
Other software /
Other software solutions
Vendor: ZyXEL Communications Corp.
