critical
9.8
CWE
787 119
Advisory Published
Updated

CVE-2020-25014: Buffer Overflow

First published: Fri Nov 27 2020(Updated: )

A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet.

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel Zywall 110 firmware
Zyxel Zywall 1100 Firmware
Zyxel Zywall 310 firmware
Zyxel USG 110
Zyxel USG 1100 firmware
Zyxel USG1900
Zyxel USG 20W
Zyxel USG20
Zyxel USG2200-VPN Firmware
Zyxel USG 310 firmware
Zyxel USG40W
Zyxel USG40W
Zyxel USG60W
Zyxel USG 60w firmware
Zyxel USG 110
Zyxel USG1100 firmware
Zyxel USG1900 Firmware
Zyxel USG20
Zyxel USG20W-VPN Firmware
Zyxel USG210
Zyxel USG2200-VPN Firmware
Zyxel USG 310
Zyxel USG 40
Zyxel USG40W
Zyxel USG 60
Zyxel USG 60w
Zyxel VPN100 Firmware
Zyxel VPN300
Zyxel VPN50 Firmware
Zyxel USG FLEX 100
Zyxel USG FLEX 200 firmware
Zyxel USG FLEX 500 firmware
Zyxel USG FLEX 100w firmware
Zyxel USG FLEX 700 firmware
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA1123-AC-HD Firmware
Zyxel NWA1123-AC-PRO Firmware
Zyxel Access Points Firmware
Zyxel NWA1123-ACv2
Zyxel WAX510D firmware
Zyxel WAC5302D-S
Zyxel NWA5120
Zyxel NWA5301-NJ
Zyxel WAX610D
Zyxel WAX650S
Zyxel wac6550
Zyxel WAC6303D-S
Zyxel WAC6500
Zyxel WAC6100
Zyxel NWA210AX Firmware
Zyxel NWA110AX
Zyxel NWA1302-AC
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel Zywall 110 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel Zywall 1100 Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel Zywall 310 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 110
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 1100 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG1900
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 20W
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG20
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG2200-VPN Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 310 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG40W
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG40W
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG60W
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 60w firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 110
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG1100 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG1900 Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG20
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG20W-VPN Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG210
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG2200-VPN Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 310
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 40
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG40W
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 60
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG 60w
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel VPN100 Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel VPN300
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel VPN50 Firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG FLEX 100
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG FLEX 200 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG FLEX 500 firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG FLEX 100w firmware
All of
Zyxel ZLD Firmware>=4.30<=4.55
Zyxel USG FLEX 700 firmware
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA1123-AC-HD Firmware
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA1123-AC-PRO Firmware
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA1123-ACv2
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAX510D firmware
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAC5302D-S
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA5120
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA5301-NJ
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAX610D
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAX650S
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel wac6550
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAC6303D-S
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAC6500
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel WAC6100
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA210AX Firmware
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA110AX
All of
Any of
Zyxel Access Points Firmware<=6.10
Zyxel Access Points Firmware=6.10
Zyxel Access Points Firmware=6.10-patch1
Zyxel Access Points Firmware=6.10-patch2
Zyxel Access Points Firmware=6.10-patch3
Zyxel Access Points Firmware=6.10-patch4
Zyxel Access Points Firmware=6.10-patch5
Zyxel Access Points Firmware=6.10-patch6
Zyxel Access Points Firmware=6.10-patch7
Zyxel NWA1302-AC

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2020-25014?

    CVE-2020-25014 is a stack-based buffer overflow vulnerability found in the Zyxel UTM and VPN series of gateways firmware version V4.30 through to V4.55.

  • How severe is CVE-2020-25014?

    CVE-2020-25014 has a severity rating of 9.8 (critical).

  • How can remote unauthenticated attackers exploit CVE-2020-25014?

    Remote unauthenticated attackers can exploit CVE-2020-25014 by sending a crafted HTTP packet, which can allow them to execute arbitrary code.

  • Which Zyxel devices are affected by CVE-2020-25014?

    Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 are affected by CVE-2020-25014.

  • How can I fix CVE-2020-25014?

    To fix CVE-2020-25014, Zyxel has released a security advisory and patches that should be applied to the affected devices. Please refer to the Zyxel support website for more information.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203