Vulnerabilities > CVE-2018-9129 - Unspecified vulnerability in Zyxel products

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

high complexity

zyxel

NVD

Published: 2018-08-15

Updated: 2023-11-07

Summary

ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections.

Vulnerable Configurations

Part	Description	Count
OS	Zyxel Zyxel Zywall 110 Firmware - Zyxel Zywall 1100 Firmware - Zyxel Zywall 310 Firmware - Zyxel Zywall VPN 50 Firmware - Zyxel Zywall VPN 100 Firmware - Zyxel Zywall VPN 300 Firmware - Zyxel USG 20W Firmware - Zyxel USG 40 Firmware - Zyxel USG 40W Firmware - Zyxel USG 60 Firmware - Zyxel USG 60W Firmware - Zyxel USG 110 Firmware - Zyxel USG 2200 VPN Firmware - Zyxel USG 310 Firmware - Zyxel USG 1100 Firmware - Zyxel USG 1900 Firmware - Zyxel USG 20W VPN Firmware -	17
Hardware	Zyxel Zyxel Zywall 110 - Zyxel Zywall 1100 - Zyxel Zywall 310 - Zyxel Zywall VPN 50 - Zyxel Zywall VPN 100 - Zyxel Zywall VPN 300 - Zyxel USG 20W - Zyxel USG 40 - Zyxel USG 40W - Zyxel USG 60 - Zyxel USG 60W - Zyxel USG 110 - Zyxel USG 2200 VPN - Zyxel USG 310 - Zyxel USG 1100 - Zyxel USG 1900 - Zyxel USG 20W VPN -	17

Summary

Vulnerable Configurations

References