Main Vulnerability Database SB2020121920

SB2020121920 - Remote code execution in Zyxel routers

Published: December 19, 2020

Security Bulletin ID SB2020121920

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Input validation error (CVE-ID: N/A)

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to insufficient validation of user-supplied input when processing HTTP requests in zhttpd webserver. A remote attacker can send specially crafted HTTP request to the affected device and execute arbitrary code on the system.

Successful exploitation of the vulnerability will result in a complete compromise of the router.

Remediation

Install update from vendor's website.

References

https://www.zyxel.com/support/Zyxel-security-advisory-for-remote-code-execution-and-denial-of-service-vulnerabilities-of-CPE.shtml

Vulnerable Software

EMG3525-T50B: before V5.50(ABSL.0)b8
EMG5523-T50B: before V5.50(ABSL.0)b8
EMG5723-T50K: before V5.50(ABOM.5)C0
EMG6726-B10A: before V5.13 (ABNP.6).C0
EX3510-B0: before V5.17(ABUP.3)C0
EX5510-B0: before V5.15(ABQX.3)C0
VMG3625-T50B: before V5.50(ABPM.4)C0
VMG3925-B10B/B10C: before V5.13(AAVF.16)C0
VMG3927-B50A_B60A: before V5.15(ABMT.5)C0
VMG3927-B50B: before V5.13(ABLY.6)C0
VMG3927-T50K: before V5.50(ABOM.5)C0
VMG4005-B50B: before V5.13(ABRL.5)C0
VMG4927-B50A: before V5.13(ABLY.6)C0
VMG8623-T50B: before V5.50(ABPM.4)C0
VMG8825-B50A_B60A: before V5.15(ABMT.5)C0
VMG8825-Bx0B: before V5.15(ABNY.5)C0
VMG8825-T50K: before V5.50(ABOM.5)C0
VMG8924-B10D: before V5.13(ABGQ.6)C0
XMG3927-B50A: before V5.15(ABMT.5)C0
XMG8825-B50A: before V5.15(ABMT.5)C0
VMG1312-T20B: before V5.50(ABSB.3)C0