CVE-2021-35033

A vulnerability in specific versions of Zyxel NBG6818, NBG7815, WSQ20, WSQ50, WSQ60, and WSR30 firmware with pre-configured password management could allow an attacker to obtain root access of the device, if the local attacker dismantles the device and uses a USB-to-UART cable to connect the device, or if the remote assistance feature had been enabled by an authenticated user.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
ZyxelCNA
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 9%
VendorProductVersion
zyxelnbg6818_firmware
𝑥
< 1.00\(absc.5\)c0
zyxelnbg7815_firmware
𝑥
< 1.00\(absk.7\)c0
zyxelwsq20_firmware
𝑥
< 1.00\(abof.11\)c0
zyxelwsq50_firmware
𝑥
< 2.20\(abkj.7\)c0
zyxelwsq60_firmware
𝑥
< 2.20\(abnd.8\)c0
zyxelwsr30_firmware
𝑥
< 1.00\(abmy.12\)c0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.tenable.com/security/research/tra-2022-06
https://www.zyxel.com/support/Zyxel_security_advisory_for_pre-configured_password_management_vulnerability_of_home_routers_and_WiFi_systems.shtml
https://www.tenable.com/security/research/tra-2022-06
https://www.zyxel.com/support/Zyxel_security_advisory_for_pre-configured_password_management_vulnerability_of_home_routers_and_WiFi_systems.shtml