CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-1732
https://notcve.org/view.php?id=CVE-2025-1732
22 Apr 2025 — An improper privilege management vulnerability in the recovery function of the USG FLEX H series uOS firmware version V1.31 and earlier could allow an authenticated local attacker with administrator privileges to upload a crafted configuration file and escalate privileges on a vulnerable device. Una vulnerabilidad de gestión de privilegios inadecuada en la función de recuperación de la versión de firmware uOS V1.31 y anteriores de la serie USG FLEX H podría permitir que un atacante local autenticado con pri... • https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-incorrect-permission-assignment-and-improper-privilege-management-vulnerabilities-in-usg-flex-h-series-firewalls-04-22-2025 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-9677
https://notcve.org/view.php?id=CVE-2024-9677
22 Oct 2024 — The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H series uOS firmware version V1.21 and earlier versions could allow an authenticated local attacker to gain privilege escalation by stealing the authentication token of a login administrator. Note that this attack could be successful only if the administrator has not logged out. The insufficiently protected credentials vulnerability in the CLI command of the USG FLEX H series uOS firmware version V1.21 and earlier ver... • https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-insufficiently-protected-credentials-vulnerability-in-firewalls-10-22-2024 • CWE-522: Insufficiently Protected Credentials •