CVE-2022-0556

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Zyxel AP Configurator version 1.1.4

Description A local privilege escalation issue is caused by incorrect permission assignment in some directories of the Zyxel AP Configurator, which could allow an attacker to execute arbitrary code as a local administrator.

Recommendations For Zyxel AP Configurator version 1.1.4, update to a version that fixes the incorrect permission assignment issue to prevent local privilege escalation.

Fix

Improper Privilege Management

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-732

Related Identifiers

CVE-2022-0556

ZDI-22-879

Affected Products

Zyxel Ap Configurator

CVE-2022-0556

Weakness Enumeration

Related Identifiers

Affected Products

References · 7