CWE
787 119
Advisory Published
Updated

CVE-2020-25014: Buffer Overflow

First published: Fri Nov 27 2020(Updated: )

A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet.

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Zyxel Zld Firmware>=4.30<=4.55
Zyxel Zywall 110
Zyxel Zywall 1100
Zyxel Zywall 310
Zyxel Usg 110
Zyxel Usg 1100
Zyxel Usg 1900
Zyxel Usg 20w
Zyxel Usg 20w-vpn
Zyxel Usg 2200-vpn
Zyxel Usg 310
Zyxel Usg 40
Zyxel Usg 40w
Zyxel Usg 60
Zyxel Usg 60w
Zyxel Usg110
Zyxel Usg1100
Zyxel Usg1900
Zyxel Usg20-vpn
Zyxel Usg20w-vpn
Zyxel Usg210
Zyxel Usg2200-vpn
Zyxel Usg310
Zyxel Usg40
Zyxel Usg40w
Zyxel Usg60
Zyxel Usg60w
Zyxel Vpn100
Zyxel Vpn300
Zyxel Vpn50
Zyxel Usg Flex 100
Zyxel Usg Flex 200
Zyxel Usg Flex 500
Zyxel Usg Flex 100w
Zyxel Usg Flex 700
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa1123-ac Hd
Zyxel Nwa1123-ac Pro
Zyxel Access Points Firmware
Zyxel Nwa1123-acv2
Zyxel Wax510d
Zyxel Wac5302d-s
Zyxel Nwa5120
Zyxel Nwa5301-nj
Zyxel Wax610d
Zyxel Wax650s
Zyxel Wac6550
Zyxel Wac6303d-s
Zyxel Wac6500
Zyxel Wac6100
Zyxel Nwa210ax
Zyxel NWA110AX
Zyxel Nwa1302-ac
All of
Zyxel Zld>=4.30<=4.55
Zyxel Zywall 110
All of
Zyxel Zld>=4.30<=4.55
Zyxel Zywall 1100
All of
Zyxel Zld>=4.30<=4.55
Zyxel Zywall 310
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 110
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 1100
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 1900
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 20w
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 20w-vpn
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 2200-vpn
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 310
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 40
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 40w
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 60
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg 60w
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg110
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg1100
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg1900
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg20-vpn
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg20w-vpn
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg210
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg2200-vpn
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg310
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg40
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg40w
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg60
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg60w
All of
Zyxel Zld>=4.30<=4.55
Zyxel Vpn100
All of
Zyxel Zld>=4.30<=4.55
Zyxel Vpn300
All of
Zyxel Zld>=4.30<=4.55
Zyxel Vpn50
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg Flex 100
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg Flex 200
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg Flex 500
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg Flex 100w
All of
Zyxel Zld>=4.30<=4.55
Zyxel Usg Flex 700
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa1123-ac Hd
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa1123-ac Pro
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa1123-acv2
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wax510d
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wac5302d-s
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa5120
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa5301-nj
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wax610d
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wax650s
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wac6550
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wac6303d-s
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wac6500
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Wac6100
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa210ax
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA110AX
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel Nwa1302-ac

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is CVE-2020-25014?

    CVE-2020-25014 is a stack-based buffer overflow vulnerability found in the Zyxel UTM and VPN series of gateways firmware version V4.30 through to V4.55.

  • How severe is CVE-2020-25014?

    CVE-2020-25014 has a severity rating of 9.8 (critical).

  • How can remote unauthenticated attackers exploit CVE-2020-25014?

    Remote unauthenticated attackers can exploit CVE-2020-25014 by sending a crafted HTTP packet, which can allow them to execute arbitrary code.

  • Which Zyxel devices are affected by CVE-2020-25014?

    Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 are affected by CVE-2020-25014.

  • How can I fix CVE-2020-25014?

    To fix CVE-2020-25014, Zyxel has released a security advisory and patches that should be applied to the affected devices. Please refer to the Zyxel support website for more information.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203