← Back

CVE-2021-35036

nvd nist
Published: Mar 1, 2022Modified: Nov 21, 2024

JSON object

Loading...
6.5
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.8 / Impact: 3.6
Source: NVD

Description

A cleartext storage of information vulnerability in the Zyxel VMG3625-T50B firmware version V5.50(ABTL.0)b2k could allow an authenticated attacker to obtain sensitive information from the configuration file.

Affected (33)

Zyxel
31 products
Ax7501 B0 Firmware
Dx3301 T0 Firmware
Dx5401 B0 Firmware
Emg3525 T50b Firmware
Emg5523 T50b Firmware
Emg5723 T50k Firmware
Ep240p Firmware
Ex5401 B0 Firmware
Ex5501 B0 Firmware
Lte3301 Plus Firmware
Lte5388 M804 Firmware
Lte5388 S905 Firmware
Lte5398 M904 Firmware
Lte7240 M403 Firmware
Lte7461 M602 Firmware
Lte7480 M804 Firmware
Lte7480 S905 Firmware
Lte7485 S905 Firmware
Lte7490 M804 Firmware
Nr5101 Firmware
Nr7101 Firmware
Nr7102 Firmware
Pm7300 T0 Firmware
Pmg5317 T20b Firmware
Pmg5617 T20b2 Firmware
Pmg5617ga Firmware
Pmg5622ga Firmware
Vmg3625 T50b Firmware
Vmg3927 T50k Firmware
Vmg8623 T50b Firmware
Vmg8825 T50k Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ax7501 B0 Firmware
Before 5.17\(abpc.2\)c0
Running on/withPlatform Versions
Zyxel
Ax7501 B0
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dx3301 T0 Firmware
Before 5.50\(abvy.3\)c0
Running on/withPlatform Versions
Zyxel
Dx3301 T0
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dx5401 B0 Firmware
Before 5.17\(abyo.2\)c0
Running on/withPlatform Versions
Zyxel
Dx5401 B0
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Emg3525 T50b Firmware
Before 5.50\(abpm.7\)c0
Running on/withPlatform Versions
Zyxel
Emg3525 T50b
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Emg5523 T50b Firmware
Before 5.50\(abpm.7\)c0
Running on/withPlatform Versions
Zyxel
Emg5523 T50b
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Emg5723 T50k Firmware
Before 5.50\(abom.8\)c0
Running on/withPlatform Versions
Zyxel
Emg5723 T50k
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ep240p Firmware
Before 5.40\(abvh.0\)c0a03
Running on/withPlatform Versions
Zyxel
Ep240p
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ex5401 B0 Firmware
Before 5.17\(abyo.2\)c0
Running on/withPlatform Versions
Zyxel
Ex5401 B0
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ex5501 B0 Firmware
Before 5.17\(abry.3\)c0
Running on/withPlatform Versions
Zyxel
Ex5501 B0
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte3301 Plus Firmware
Before 1.00\(abqu.6\)c0
Running on/withPlatform Versions
Zyxel
Lte3301 Plus
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte5388 M804 Firmware
Before 1.00\(abra.6\)c0
Running on/withPlatform Versions
Zyxel
Lte5388 M804
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte5388 S905 Firmware
Before 1.00\(abvi.6\)c0
Running on/withPlatform Versions
Zyxel
Lte5388 S905
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte5398 M904 Firmware
Before 1.00\(abqv.2\)c0
Running on/withPlatform Versions
Zyxel
Lte5398 M904
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte7240 M403 Firmware
Before 2.00\(abmg.6\)c0
Running on/withPlatform Versions
Zyxel
Lte7240 M403
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte7461 M602 Firmware
Before 2.00\(abqn.6\)c0
Running on/withPlatform Versions
Zyxel
Lte7461 M602
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte7480 M804 Firmware
Before 1.00\(abra.6\)c0
Running on/withPlatform Versions
Zyxel
Lte7480 M804
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte7480 S905 Firmware
Before 2.00\(abqt.6\)c0
Running on/withPlatform Versions
Zyxel
Lte7480 S905
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte7485 S905 Firmware
Before 1.00\(abvn.6\)c0
Running on/withPlatform Versions
Zyxel
Lte7485 S905
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Lte7490 M804 Firmware
Before v1.00\(abqy.5\)c0
Running on/withPlatform Versions
Zyxel
Lte7490 M804
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nr5101 Firmware
Before 1.00\(abvc.6\)c0
Running on/withPlatform Versions
Zyxel
Nr5101
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nr7101 Firmware
Before 1.00\(abuv.7\)c0
Running on/withPlatform Versions
Zyxel
Nr7101
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nr7102 Firmware
Before 1.00\(abyd.2\)c0
Running on/withPlatform Versions
Zyxel
Nr7102
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Pm7300 T0 Firmware
Before 5.42\(acbc.1\)c0
Running on/withPlatform Versions
Zyxel
Pm7300 T0
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Pmg5317 T20b Firmware
Before 5.40\(abki.4\)c0
Running on/withPlatform Versions
Zyxel
Pmg5317 T20b
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Pmg5617 T20b2 Firmware
Before 5.41\(acbb.1\)c0
Running on/withPlatform Versions
Zyxel
Pmg5617 T20b2
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Pmg5617ga Firmware
Before 5.40\(abna.2\)c0
Running on/withPlatform Versions
Zyxel
Pmg5617ga
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Pmg5622ga Firmware
Before 5.40\(abnb.2\)c0
Running on/withPlatform Versions
Zyxel
Pmg5622ga
All versions
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Vmg3625 T50b Firmware
Before 5.50\(abtl.0\)b2r
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Vmg3927 T50k Firmware
Before 5.50\(abom.8\)c0
Running on/withPlatform Versions
Zyxel
Vmg3927 T50k
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Vmg8623 T50b Firmware
Before 5.50\(abpm.7\)c0
Running on/withPlatform Versions
Zyxel
Vmg8623 T50b
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Vmg8825 T50k Firmware
Before 5.50\(abom.8\)c0
Running on/withPlatform Versions
Zyxel
Vmg8825 T50k
All versions
Configuration F
1 vulnerable
Vulnerable SoftwareAffected Versions
Vmg3625 T50b Firmware
Before 5.50\(accr.0\)b4
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Vmg3625 T50b Firmware
Before 5.50\(abpm.7\)c0
Running on/withPlatform Versions
Zyxel
Vmg3625 T50b
All versions

Related CWEs

CWE-312
Cleartext Storage of Sensitive Information
The product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.

References (2)

Source: security@zyxel.com.tw
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.