CVE-2022-0734

EUVD-2022-15802

24.05.2022, 03:15

A cross-site scripting vulnerability was identified in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.35 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.35 through 5.20, and VPN series firmware versions 4.35 through 5.20, that could allow an attacker to obtain some information stored in the user's browser, such as cookies or session tokens, via a malicious script.

Cross-site Scripting

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.8 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Zyxel	CNA	5.8 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 55%

Affected Products (NVD)

Vendor	Product	Version
zyxel	vpn100_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	vpn1000_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	vpn300_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	vpn50_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	atp100_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	atp100w_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	atp200_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	atp500_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	atp700_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	atp800_firmware	4.35 ≤ 𝑥 ≤ 5.20
zyxel	usg_110_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_1100_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_1900_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_20w_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_20w-vpn_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_2200-vpn_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_310_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_40_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_40w_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_60_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_60w_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg_flex_100_firmware	4.50 ≤ 𝑥 ≤ 5.20
zyxel	usg_flex_100w_firmware	4.50 ≤ 𝑥 ≤ 5.20
zyxel	usg_flex_200_firmware	4.50 ≤ 𝑥 ≤ 5.20
zyxel	usg_flex_500_firmware	4.50 ≤ 𝑥 ≤ 5.20
zyxel	usg_flex_700_firmware	4.50 ≤ 𝑥 ≤ 5.20
zyxel	usg200_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg20_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg210_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg2200_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg300_firmware	4.35 ≤ 𝑥 ≤ 4.70
zyxel	usg310_firmware	4.35 ≤ 𝑥 ≤ 4.70

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References

https://www.zyxel.com/support/multiple-vulnerabilities-of-firewalls-AP-controllers-and-APs.shtml