CVE-2021-35029
02.07.2021, 11:15
An authentication bypasss vulnerability in the web-based management interface of Zyxel USG/Zywall series firmware versions 4.35 through 4.64 and USG Flex, ATP, and VPN series firmware versions 4.35 through 5.01, which could allow a remote attacker to execute arbitrary commands on an affected device.Enginsight
| Vendor | Product | Version |
|---|---|---|
| zyxel | usg1900_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg1100_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg310_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg210_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg110_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg40_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg40w_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg60_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg60w_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg300_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg1000_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg2000_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg20_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg20w_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg50_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg100_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg200_firmware | 4.35 ≤ 𝑥 ≤ 4.64 |
| zyxel | usg_flex_100_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg_flex_200_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg_flex_500_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg_flex_100w_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg_flex_700_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_atp100_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_atp100w_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_atp200_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_atp500_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_atp700_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_atp800_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_vpn50_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_vpn100_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_vpn300_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg20-vpn_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg20w-vpn_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | usg2200-vpn_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_110_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_310_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
| zyxel | zywall_1100_firmware | 4.35 ≤ 𝑥 ≤ 5.01 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration