CVE-2023-28767

Name of the Vulnerable Software and Affected Versions Zyxel ATP series versions 5.10 through 5.36 Zyxel USG FLEX series versions 5.00 through 5.36 Zyxel USG FLEX 50(W) series versions 5.10 through 5.36 Zyxel USG20(W)-VPN series versions 5.10 through 5.36 Zyxel VPN series versions 5.00 through 5.36

Description The configuration parser fails to sanitize user-controlled input in the affected Zyxel devices. An unauthenticated, LAN-based attacker could leverage this issue to inject operating system (OS) commands into the device configuration data on an affected device when the cloud management mode is enabled.

Recommendations For Zyxel ATP series versions 5.10 through 5.36, update to a version that includes a fix for this issue. For Zyxel USG FLEX series versions 5.00 through 5.36, update to a version that includes a fix for this issue. For Zyxel USG FLEX 50(W) series versions 5.10 through 5.36, update to a version that includes a fix for this issue. For Zyxel USG20(W)-VPN series versions 5.10 through 5.36, update to a version that includes a fix for this issue. For Zyxel VPN series versions 5.00 through 5.36, update to a version that includes a fix for this issue. As a temporary workaround, consider disabling the cloud management mode until a patch is available.