Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:atp200_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:atp200:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:atp500_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:atp500:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:atp800_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:atp800:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg1100_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg1100:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg110_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg110:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg1900_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg1900:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg20-vpn_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg20-vpn:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg20w-vpn_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg20w-vpn:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg210_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg210:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg2200-vpn_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg2200-vpn:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg310_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg310:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg40_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg40:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg40w_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg40w:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg60_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg60:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:usg60w_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:usg60w:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:vpn100_firmware:-:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:vpn100:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:vpn300_firmware:-:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:vpn300:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:vpn50_firmware:-:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:vpn50:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:zywall_1100_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:zywall_1100:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:zywall_110_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:zywall_110:-:*:*:*:*:*:*:*
|
Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:o:zyxel:zywall_310_firmware:4.31:*:*:*:*:*:*:*
OR
cpe:2.3:h:zyxel:zywall_310:-:*:*:*:*:*:*:*
|
Added |
CVSS V2 |
|
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
|
Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism
|
Added |
CVSS V3 |
|
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
|
Added |
CWE |
|
CWE-79
|
Changed |
Reference Type |
http://packetstormsecurity.com/files/152525/Zyxel-ZyWall-Cross-Site-Scripting.html No Types Assigned
|
http://packetstormsecurity.com/files/152525/Zyxel-ZyWall-Cross-Site-Scripting.html Exploit, Third Party Advisory, VDB Entry
|
Changed |
Reference Type |
http://seclists.org/fulldisclosure/2019/Apr/22 No Types Assigned
|
http://seclists.org/fulldisclosure/2019/Apr/22 Mailing List, Third Party Advisory
|
Changed |
Reference Type |
https://www.exploit-db.com/exploits/46706/ No Types Assigned
|
https://www.exploit-db.com/exploits/46706/ Exploit, Third Party Advisory, VDB Entry
|
Changed |
Reference Type |
https://www.securitymetrics.com/blog/Zyxel-Devices-Vulnerable-Cross-Site-Scripting-Login-page No Types Assigned
|
https://www.securitymetrics.com/blog/Zyxel-Devices-Vulnerable-Cross-Site-Scripting-Login-page Patch, Third Party Advisory
|
Changed |
Reference Type |
https://www.zyxel.com/support/reflected-cross-site-scripting-vulnerability-of-firewalls.shtml No Types Assigned
|
https://www.zyxel.com/support/reflected-cross-site-scripting-vulnerability-of-firewalls.shtml Vendor Advisory
|