CVE-2024-7261

Published: Sep 3, 2024Modified: Sep 13, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: security@zyxel.com.tw (Secondary)

Description

The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70(ABVT.4) and earlier, WAC500 firmware version 6.70(ABVS.4) and earlier, WAX655E firmware version 7.00(ACDO.1) and earlier, WBE530 firmware version 7.00(ACLE.1) and earlier, and USG LITE 60AX firmware version V2.00(ACIP.2) could allow an unauthenticated attacker to execute OS commands by sending a crafted cookie to a vulnerable device.

Affected (29)

Products: Zyxel: Nwa110ax Firmware, Nwa1123 Ac Pro Firmware, Nwa1123acv3 Firmware, Nwa130be Firmware, Nwa210ax Firmware, Nwa220ax 6e Firmware, Nwa50ax Firmware, Nwa50ax Pro Firmware, Nwa55axe Firmware, Nwa90ax Firmware, Nwa90ax Pro Firmware, Usg Lite 60ax Firmware, Wac500 Firmware, Wac500h Firmware, Wac6103d I Firmware, Wac6502d S Firmware, Wac6503d S Firmware, Wac6552d S Firmware, Wac6553d E Firmware, Wax300h Firmware, Wax510d Firmware, Wax610d Firmware, Wax620d 6e Firmware, Wax630s Firmware, Wax640s 6e Firmware, Wax650s Firmware, Wax655e Firmware, Wbe530 Firmware, Wbe660s Firmware

Zyxel

29 products

Nwa110ax Firmware

Nwa1123 Ac Pro Firmware

Usg Lite 60ax Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa110ax Firmware	Before 7.00\(abtg.2\)

Running on/with	Platform Versions
Zyxel Nwa110ax	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa1123 Ac Pro Firmware	Before 6.28\(abhd.3\)

Running on/with	Platform Versions
Zyxel Nwa1123 Ac Pro	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa1123acv3 Firmware	Before 6.70\(abvt.5\)

Running on/with	Platform Versions
Zyxel Nwa1123acv3	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa130be Firmware	Before 7.00\(acil.2\)

Running on/with	Platform Versions
Zyxel Nwa130be	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa210ax Firmware	Before 7.00\(abtd.2\)

Running on/with	Platform Versions
Zyxel Nwa210ax	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa220ax 6e Firmware	Before 7.00\(acco.2\)

Running on/with	Platform Versions
Zyxel Nwa220ax 6e	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa50ax Firmware	Before 7.00\(abyw.2\)

Running on/with	Platform Versions
Zyxel Nwa50ax	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa50ax Pro Firmware	Before 7.00\(acge.2\)

Running on/with	Platform Versions
Zyxel Nwa50ax Pro	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa55axe Firmware	Before 7.00\(abzl.2\)

Running on/with	Platform Versions
Zyxel Nwa55axe	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa90ax Firmware	Before 7.00\(accv.2\)

Running on/with	Platform Versions
Zyxel Nwa90ax	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Nwa90ax Pro Firmware	Before 7.00\(acgf.2\)

Running on/with	Platform Versions
Zyxel Nwa90ax Pro	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Usg Lite 60ax Firmware	Before v2.00\(acip.3\)

Running on/with	Platform Versions
Zyxel Usg Lite 60ax	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac500 Firmware	Before 6.70\(abvs.5\)

Running on/with	Platform Versions
Zyxel Wac500	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac500h Firmware	Before 6.70\(abwa.5\)

Running on/with	Platform Versions
Zyxel Wac500h	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac6103d I Firmware	Before 6.28\(aaxh.3\)

Running on/with	Platform Versions
Zyxel Wac6103d I	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac6502d S Firmware	Before 6.28\(aase.3\)

Running on/with	Platform Versions
Zyxel Wac6502d S	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac6503d S Firmware	Before 6.28\(aasf.3\)

Running on/with	Platform Versions
Zyxel Wac6503d S	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac6552d S Firmware	Before 6.28\(abio.3\)

Running on/with	Platform Versions
Zyxel Wac6552d S	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wac6553d E Firmware	Before 6.28\(aasg.3\)

Running on/with	Platform Versions
Zyxel Wac6553d E	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax300h Firmware	Before 7.00\(achf.2\)

Running on/with	Platform Versions
Zyxel Wax300h	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax510d Firmware	Before 7.00\(abtf.2\)

Running on/with	Platform Versions
Zyxel Wax510d	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax610d Firmware	Before 7.00\(abte.2\)

Running on/with	Platform Versions
Zyxel Wax610d	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax620d 6e Firmware	Before 7.00\(accn.2\)

Running on/with	Platform Versions
Zyxel Wax620d 6e	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax630s Firmware	Before 7.00\(abzd.2\)

Running on/with	Platform Versions
Zyxel Wax630s	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax640s 6e Firmware	Before 7.00\(accm.2\)

Running on/with	Platform Versions
Zyxel Wax640s 6e	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax650s Firmware	Before 7.00\(abrm.2\)

Running on/with	Platform Versions
Zyxel Wax650s	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wax655e Firmware	Before 7.00\(acdo.2\)

Running on/with	Platform Versions
Zyxel Wax655e	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wbe530 Firmware	Before 7.00\(acle.2\)

Running on/with	Platform Versions
Zyxel Wbe530	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Zyxel Wbe660s Firmware	Before 7.00\(acgg.2\)

Running on/with	Platform Versions
Zyxel Wbe660s	All versions

Related CWEs

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (1)

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-os-command-injection-vulnerability-in-aps-and-security-router-devices-09-03-2024

Source: security@zyxel.com.tw

Vendor Advisory

Timeline

No history available yet.