Vulnerabilities > CVE-2020-25014 - Out-of-bounds Write vulnerability in Zyxel Access Points Firmware and ZLD

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

zyxel

CWE-787

critical

NVD

Published: 2020-11-27

Updated: 2024-12-12

Summary

A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet.

Vulnerable Configurations

Part	Description	Count
OS	Zyxel Zyxel ZLD 4.30 Zyxel ZLD 4.32 Zyxel ZLD 4.39 Zyxel ZLD 4.50 Zyxel ZLD 4.55 Zyxel Access Points Firmware - Zyxel Access Points Firmware 6.10	14
Hardware	Zyxel Zyxel Zywall 110 - Zyxel Zywall 1100 - Zyxel Zywall 310 - Zyxel USG 110 - Zyxel USG 1100 - Zyxel USG 1900 - Zyxel USG 20W - Zyxel USG 20W VPN - Zyxel USG 2200 VPN - Zyxel USG 310 - Zyxel USG 40 - Zyxel USG 40W - Zyxel USG 60 - Zyxel USG 60W - Zyxel Usg110 - Zyxel Usg1100 - Zyxel Usg1900 - Zyxel Usg20 VPN - Zyxel Usg20W VPN - Zyxel Usg210 - Zyxel Usg2200 VPN - Zyxel Usg310 - Zyxel Usg40 - Zyxel Usg40W - Zyxel Usg60 - Zyxel Usg60W - Zyxel Vpn100 - Zyxel Vpn300 - Zyxel Vpn50 - Zyxel USG Flex 100 - Zyxel USG Flex 200 - Zyxel USG Flex 500 - Zyxel USG Flex 100W - Zyxel USG Flex 700 - Zyxel Nwa1123 AC HD - Zyxel Nwa1123 AC PRO - Zyxel Nwa1123 Acv2 - Zyxel Wax510D - Zyxel Wac5302D S - Zyxel Nwa5120 - Zyxel Nwa5301 NJ - Zyxel Wax610D - Zyxel Wax650S - Zyxel Wac6550 - Zyxel Wac6303D S - Zyxel Wac6500 - Zyxel Wac6100 - Zyxel Nwa210Ax - Zyxel Nwa110Ax - Zyxel Nwa1302 AC -	50

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References