Vulnerability identifier: #VU49097
Vulnerability risk: High
CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-20
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
EMG3525-T50B
Hardware solutions /
Routers for home users
EMG5523-T50B
Hardware solutions /
Routers for home users
EMG5723-T50K
Hardware solutions /
Routers for home users
EMG6726-B10A
Hardware solutions /
Routers for home users
EX3510-B0
Hardware solutions /
Routers for home users
EX5510-B0
Hardware solutions /
Routers for home users
VMG3625-T50B
Hardware solutions /
Routers for home users
VMG3925-B10B/B10C
Hardware solutions /
Routers for home users
VMG3927-B50A_B60A
Hardware solutions /
Routers for home users
VMG3927-B50B
Hardware solutions /
Routers for home users
VMG3927-T50K
Hardware solutions /
Routers for home users
VMG4005-B50B
Hardware solutions /
Routers for home users
VMG4927-B50A
Hardware solutions /
Routers for home users
VMG8623-T50B
Hardware solutions /
Routers for home users
VMG8825-B50A_B60A
Hardware solutions /
Routers for home users
VMG8825-Bx0B
Hardware solutions /
Routers for home users
VMG8825-T50K
Hardware solutions /
Routers for home users
VMG8924-B10D
Hardware solutions /
Routers for home users
XMG3927-B50A
Hardware solutions /
Routers for home users
XMG8825-B50A
Hardware solutions /
Routers for home users
VMG1312-T20B
Hardware solutions /
Routers for home users
Vendor:
Description
The vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to insufficient validation of user-supplied input when processing HTTP requests in zhttpd webserver. A remote attacker can send specially crafted HTTP request to the affected device and execute arbitrary code on the system.
Successful exploitation of the vulnerability will result in a complete compromise of the router.
Mitigation
Install updates from vendor's website.
Note, some of the firmware updates are scheduled to be released during 2021.
Vulnerable software versions
External links
http://www.zyxel.com/support/Zyxel-security-advisory-for-remote-code-execution-and-denial-of-service-vulnerabilities-of-CPE.shtml
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.