Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35, which could allow an unauthenticated attacker to execute some OS commands remotely by sending crafted packets to an affected device.
Published 2023-04-25 02:15:09
Updated 2023-06-09 18:12:05
View at NVD,   CVE.org

CVE-2023-28771 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:
Zyxel Multiple Firewalls OS Command Injection Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected device.
Notes:
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-remote-command-injection-vulnerability-of-firewalls
Added on 2023-05-31 Action due date 2023-06-21

Exploit prediction scoring system (EPSS) score for CVE-2023-28771

91.86%
Probability of exploitation activity in the next 30 days EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2023-28771

  • Zyxel IKE Packet Decoder Unauthenticated Remote Code Execution
    Disclosure Date: 2023-03-31
    First seen: 2023-09-11
    exploit/linux/misc/zyxel_ike_decoder_rce_cve_2023_28771
    This module exploits a remote unauthenticated command injection vulnerability in the Internet Key Exchange (IKE) packet decoder over UDP port 500 on the WAN interface of several Zyxel devices. The affected devices are as follows: ATP (Firmware version 4.60 to 5.35 incl

CVSS scores for CVE-2023-28771

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Score Source First Seen
9.8
CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.9
5.9
NIST
9.8
CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.9
5.9
Zyxel Corporation

CWE ids for CVE-2023-28771

References for CVE-2023-28771

Products affected by CVE-2023-28771

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!