CVE-2022-0342

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.20 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.32 through 5.20, VPN series firmware versions 4.30 through 5.20, and NSG series firmware versions V1.20 through V1.33 Patch 4, which could allow an attacker to bypass the web authentication and obtain administrative access of the device.

Una vulnerabilidad de omisión de autenticación en el programa CGI de USG/ZyWALL de Zyxel versiones de firmware de las series 4.20 a 4.70, las versiones de firmware de la serie USG FLEX 4.50 a 5.20, las versiones de firmware de la serie ATP 4.32 a 5.20, las versiones de firmware de la serie VPN 4.30 a 5.20 y las versiones de firmware de la serie NSG V1.20 a V1.33 Parche 4, que podría permitir a un atacante omitir la autenticación web y obtener acceso administrativo al dispositivo

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-01-24 CVE Reserved
2022-03-28 CVE Published
2024-08-02 CVE Updated
2024-09-09 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-287: Improper Authentication

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://www.zyxel.com/support/Zyxel-security-advisory-for-authentication-bypass-vulnerability-of-firewalls.shtml	2022-04-04

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Zyxel Search vendor "Zyxel"	Usg40 Firmware Search vendor "Zyxel" for product "Usg40 Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Usg40 Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg40 Search vendor "Zyxel" for product "Usg40"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg40w Firmware Search vendor "Zyxel" for product "Usg40w Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Usg40w Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg40w Search vendor "Zyxel" for product "Usg40w"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg60 Firmware Search vendor "Zyxel" for product "Usg60 Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Usg60 Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg60 Search vendor "Zyxel" for product "Usg60"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg60w Firmware Search vendor "Zyxel" for product "Usg60w Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Usg60w Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg60w Search vendor "Zyxel" for product "Usg60w"	-	-	Safe
Zyxel Search vendor "Zyxel"	Zywall 110 Firmware Search vendor "Zyxel" for product "Zywall 110 Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Zywall 110 Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Zywall 110 Search vendor "Zyxel" for product "Zywall 110"	-	-	Safe
Zyxel Search vendor "Zyxel"	Zywall 310 Firmware Search vendor "Zyxel" for product "Zywall 310 Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Zywall 310 Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Zywall 310 Search vendor "Zyxel" for product "Zywall 310"	-	-	Safe
Zyxel Search vendor "Zyxel"	Zywall 1100 Firmware Search vendor "Zyxel" for product "Zywall 1100 Firmware"	>= 4.20 < 4.71 Search vendor "Zyxel" for product "Zywall 1100 Firmware" and version " >= 4.20 < 4.71"	-	Affected	in	Zyxel Search vendor "Zyxel"	Zywall 1100 Search vendor "Zyxel" for product "Zywall 1100"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg Flex 100 Firmware Search vendor "Zyxel" for product "Usg Flex 100 Firmware"	>= 4.50 <= 5.20 Search vendor "Zyxel" for product "Usg Flex 100 Firmware" and version " >= 4.50 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg Flex 100 Search vendor "Zyxel" for product "Usg Flex 100"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg Flex 200 Firmware Search vendor "Zyxel" for product "Usg Flex 200 Firmware"	>= 4.50 <= 5.20 Search vendor "Zyxel" for product "Usg Flex 200 Firmware" and version " >= 4.50 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg Flex 200 Search vendor "Zyxel" for product "Usg Flex 200"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg Flex 500 Firmware Search vendor "Zyxel" for product "Usg Flex 500 Firmware"	>= 4.50 <= 5.20 Search vendor "Zyxel" for product "Usg Flex 500 Firmware" and version " >= 4.50 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg Flex 500 Search vendor "Zyxel" for product "Usg Flex 500"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg Flex 100w Firmware Search vendor "Zyxel" for product "Usg Flex 100w Firmware"	>= 4.50 <= 5.20 Search vendor "Zyxel" for product "Usg Flex 100w Firmware" and version " >= 4.50 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg Flex 100w Search vendor "Zyxel" for product "Usg Flex 100w"	-	-	Safe
Zyxel Search vendor "Zyxel"	Usg Flex 700 Firmware Search vendor "Zyxel" for product "Usg Flex 700 Firmware"	>= 4.50 <= 5.20 Search vendor "Zyxel" for product "Usg Flex 700 Firmware" and version " >= 4.50 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Usg Flex 700 Search vendor "Zyxel" for product "Usg Flex 700"	-	-	Safe
Zyxel Search vendor "Zyxel"	Atp100 Firmware Search vendor "Zyxel" for product "Atp100 Firmware"	>= 4.32 <= 5.20 Search vendor "Zyxel" for product "Atp100 Firmware" and version " >= 4.32 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Atp100 Search vendor "Zyxel" for product "Atp100"	-	-	Safe
Zyxel Search vendor "Zyxel"	Atp100w Firmware Search vendor "Zyxel" for product "Atp100w Firmware"	>= 4.32 <= 5.20 Search vendor "Zyxel" for product "Atp100w Firmware" and version " >= 4.32 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Atp100w Search vendor "Zyxel" for product "Atp100w"	-	-	Safe
Zyxel Search vendor "Zyxel"	Atp200 Firmware Search vendor "Zyxel" for product "Atp200 Firmware"	>= 4.32 <= 5.20 Search vendor "Zyxel" for product "Atp200 Firmware" and version " >= 4.32 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Atp200 Search vendor "Zyxel" for product "Atp200"	-	-	Safe
Zyxel Search vendor "Zyxel"	Atp500 Firmware Search vendor "Zyxel" for product "Atp500 Firmware"	>= 4.32 <= 5.20 Search vendor "Zyxel" for product "Atp500 Firmware" and version " >= 4.32 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Atp500 Search vendor "Zyxel" for product "Atp500"	-	-	Safe
Zyxel Search vendor "Zyxel"	Atp700 Firmware Search vendor "Zyxel" for product "Atp700 Firmware"	>= 4.32 <= 5.20 Search vendor "Zyxel" for product "Atp700 Firmware" and version " >= 4.32 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Atp700 Search vendor "Zyxel" for product "Atp700"	-	-	Safe
Zyxel Search vendor "Zyxel"	Atp800 Firmware Search vendor "Zyxel" for product "Atp800 Firmware"	>= 4.32 <= 5.20 Search vendor "Zyxel" for product "Atp800 Firmware" and version " >= 4.32 <= 5.20"	-	Affected	in	Zyxel Search vendor "Zyxel"	Atp800 Search vendor "Zyxel" for product "Atp800"	-	-	Safe
Zyxel Search vendor "Zyxel"	Vpn50 Firmware Search vendor "Zyxel" for product "Vpn50 Firmware"	>= 4.30 < 5.21 Search vendor "Zyxel" for product "Vpn50 Firmware" and version " >= 4.30 < 5.21"	-	Affected	in	Zyxel Search vendor "Zyxel"	Vpn50 Search vendor "Zyxel" for product "Vpn50"	-	-	Safe
Zyxel Search vendor "Zyxel"	Vpn100 Firmware Search vendor "Zyxel" for product "Vpn100 Firmware"	>= 4.30 < 5.21 Search vendor "Zyxel" for product "Vpn100 Firmware" and version " >= 4.30 < 5.21"	-	Affected	in	Zyxel Search vendor "Zyxel"	Vpn100 Search vendor "Zyxel" for product "Vpn100"	-	-	Safe
Zyxel Search vendor "Zyxel"	Vpn300 Firmware Search vendor "Zyxel" for product "Vpn300 Firmware"	>= 4.30 < 5.21 Search vendor "Zyxel" for product "Vpn300 Firmware" and version " >= 4.30 < 5.21"	-	Affected	in	Zyxel Search vendor "Zyxel"	Vpn300 Search vendor "Zyxel" for product "Vpn300"	-	-	Safe
Zyxel Search vendor "Zyxel"	Vpn1000 Firmware Search vendor "Zyxel" for product "Vpn1000 Firmware"	>= 4.30 < 5.21 Search vendor "Zyxel" for product "Vpn1000 Firmware" and version " >= 4.30 < 5.21"	-	Affected	in	Zyxel Search vendor "Zyxel"	Vpn1000 Search vendor "Zyxel" for product "Vpn1000"	-	-	Safe
Zyxel Search vendor "Zyxel"	Nsg300 Firmware Search vendor "Zyxel" for product "Nsg300 Firmware"	>= 1.20 < 1.33 Search vendor "Zyxel" for product "Nsg300 Firmware" and version " >= 1.20 < 1.33"	-	Affected	in	Zyxel Search vendor "Zyxel"	Nsg300 Search vendor "Zyxel" for product "Nsg300"	-	-	Safe
Zyxel Search vendor "Zyxel"	Nsg300 Firmware Search vendor "Zyxel" for product "Nsg300 Firmware"	1.33 Search vendor "Zyxel" for product "Nsg300 Firmware" and version "1.33"	-	Affected	in	Zyxel Search vendor "Zyxel"	Nsg300 Search vendor "Zyxel" for product "Nsg300"	-	-	Safe
Zyxel Search vendor "Zyxel"	Nsg300 Firmware Search vendor "Zyxel" for product "Nsg300 Firmware"	1.33 Search vendor "Zyxel" for product "Nsg300 Firmware" and version "1.33"	p4	Affected	in	Zyxel Search vendor "Zyxel"	Nsg300 Search vendor "Zyxel" for product "Nsg300"	-	-	Safe