First published: Fri Nov 27 2020(Updated: )
A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zyxel Zld Firmware | >=4.30<=4.55 | |
Zyxel Zywall 110 | ||
Zyxel Zywall 1100 | ||
Zyxel Zywall 310 | ||
Zyxel Usg 110 | ||
Zyxel Usg 1100 | ||
Zyxel Usg 1900 | ||
Zyxel Usg 20w | ||
Zyxel Usg 20w-vpn | ||
Zyxel Usg 2200-vpn | ||
Zyxel Usg 310 | ||
Zyxel Usg 40 | ||
Zyxel Usg 40w | ||
Zyxel Usg 60 | ||
Zyxel Usg 60w | ||
Zyxel Usg110 | ||
Zyxel Usg1100 | ||
Zyxel Usg1900 | ||
Zyxel Usg20-vpn | ||
Zyxel Usg20w-vpn | ||
Zyxel Usg210 | ||
Zyxel Usg2200-vpn | ||
Zyxel Usg310 | ||
Zyxel Usg40 | ||
Zyxel Usg40w | ||
Zyxel Usg60 | ||
Zyxel Usg60w | ||
Zyxel Vpn100 | ||
Zyxel Vpn300 | ||
Zyxel Vpn50 | ||
Zyxel Usg Flex 100 | ||
Zyxel Usg Flex 200 | ||
Zyxel Usg Flex 500 | ||
Zyxel Usg Flex 100w | ||
Zyxel Usg Flex 700 | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa1123-ac Hd | ||
Zyxel Nwa1123-ac Pro | ||
Zyxel Access Points Firmware | ||
Zyxel Nwa1123-acv2 | ||
Zyxel Wax510d | ||
Zyxel Wac5302d-s | ||
Zyxel Nwa5120 | ||
Zyxel Nwa5301-nj | ||
Zyxel Wax610d | ||
Zyxel Wax650s | ||
Zyxel Wac6550 | ||
Zyxel Wac6303d-s | ||
Zyxel Wac6500 | ||
Zyxel Wac6100 | ||
Zyxel Nwa210ax | ||
Zyxel NWA110AX | ||
Zyxel Nwa1302-ac | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Zywall 110 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Zywall 1100 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Zywall 310 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 110 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 1100 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 1900 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 20w | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 20w-vpn | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 2200-vpn | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 310 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 40 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 40w | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 60 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg 60w | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg110 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg1100 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg1900 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg20-vpn | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg20w-vpn | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg210 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg2200-vpn | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg310 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg40 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg40w | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg60 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg60w | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Vpn100 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Vpn300 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Vpn50 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg Flex 100 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg Flex 200 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg Flex 500 | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg Flex 100w | ||
All of | ||
Zyxel Zld | >=4.30<=4.55 | |
Zyxel Usg Flex 700 | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa1123-ac Hd | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa1123-ac Pro | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | ||
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa1123-acv2 | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wax510d | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wac5302d-s | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa5120 | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa5301-nj | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wax610d | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wax650s | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wac6550 | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wac6303d-s | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wac6500 | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Wac6100 | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa210ax | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel NWA110AX | ||
All of | ||
Any of | ||
Zyxel Access Points Firmware | <=6.10 | |
Zyxel Access Points Firmware | =6.10 | |
Zyxel Access Points Firmware | =6.10-patch1 | |
Zyxel Access Points Firmware | =6.10-patch2 | |
Zyxel Access Points Firmware | =6.10-patch3 | |
Zyxel Access Points Firmware | =6.10-patch4 | |
Zyxel Access Points Firmware | =6.10-patch5 | |
Zyxel Access Points Firmware | =6.10-patch6 | |
Zyxel Access Points Firmware | =6.10-patch7 | |
Zyxel Nwa1302-ac |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-25014 is a stack-based buffer overflow vulnerability found in the Zyxel UTM and VPN series of gateways firmware version V4.30 through to V4.55.
CVE-2020-25014 has a severity rating of 9.8 (critical).
Remote unauthenticated attackers can exploit CVE-2020-25014 by sending a crafted HTTP packet, which can allow them to execute arbitrary code.
Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 are affected by CVE-2020-25014.
To fix CVE-2020-25014, Zyxel has released a security advisory and patches that should be applied to the affected devices. Please refer to the Zyxel support website for more information.