CVE-2021-35029
First published: Fri Jul 02 2021(Updated: )
An authentication bypasss vulnerability in the web-based management interface of Zyxel USG/Zywall series firmware versions 4.35 through 4.64 and USG Flex, ATP, and VPN series firmware versions 4.35 through 5.01, which could allow a remote attacker to execute arbitrary commands on an affected device.
Credit: security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel USG1900 Firmware | >=4.35<=4.64 | |
| Zyxel USG1900 Firmware | ||
| Zyxel USG 1100 firmware | >=4.35<=4.64 | |
| Zyxel USG1100 firmware | ||
| Zyxel USG 310 firmware | >=4.35<=4.64 | |
| Zyxel USG 310 | ||
| Zyxel USG210 Firmware | >=4.35<=4.64 | |
| Zyxel USG210 Firmware | ||
| Zyxel USG 110 Firmware | >=4.35<=4.64 | |
| Zyxel USG 110 | ||
| Zyxel USG 40 firmware | >=4.35<=4.64 | |
| Zyxel USG 40 | ||
| Zyxel USG 40w firmware | >=4.35<=4.64 | |
| Zyxel USG 40w firmware | ||
| Zyxel USG 60W firmware | >=4.35<=4.64 | |
| Zyxel USG 60 | ||
| Zyxel USG 60W firmware | >=4.35<=4.64 | |
| Zyxel USG 60W firmware | ||
| Zyxel USG300 Firmware | >=4.35<=4.64 | |
| Zyxel USG300 Firmware | ||
| Zyxel USG1000 | >=4.35<=4.64 | |
| Zyxel USG1000 | ||
| Zyxel USG2000 Firmware | >=4.35<=4.64 | |
| Zyxel USG2000 Firmware | ||
| Zyxel USG20-VPN Firmware | >=4.35<=4.64 | |
| Zyxel USG20 Firmware | ||
| Zyxel USG 20W | >=4.35<=4.64 | |
| Zyxel USG 20W | ||
| Zyxel USG50 Firmware | >=4.35<=4.64 | |
| Zyxel USG50 Firmware | ||
| Zyxel ZyWALL USG 100 firmware | >=4.35<=4.64 | |
| Zyxel USG100 Firmware | ||
| Zyxel USG200 Firmware | >=4.35<=4.64 | |
| Zyxel USG200 Firmware | ||
| Zyxel USG Flex 100 firmware | >=4.35<=5.01 | |
| Zyxel USG Flex 100 firmware | ||
| Zyxel USG FLEX firmware | >=4.35<=5.01 | |
| Zyxel USG FLEX 200 firmware | ||
| Zyxel USG FLEX firmware | >=4.35<=5.01 | |
| Zyxel USG FLEX 500 firmware | ||
| Zyxel USG FLEX 100w firmware | >=4.35<=5.01 | |
| Zyxel USG FLEX 100w firmware | ||
| Zyxel USG FLEX firmware | >=4.35<=5.01 | |
| Zyxel USG FLEX 700 firmware | ||
| Zyxel Zywall ATP100W Firmware | >=4.35<=5.01 | |
| Zyxel ZyWall ATP100 Firmware | ||
| Zyxel ATP100W Firmware | >=4.35<=5.01 | |
| Zyxel Zywall ATP100W Firmware | ||
| Zyxel Zywall ATP200 | >=4.35<=5.01 | |
| Zyxel Zywall ATP200 | ||
| Zyxel ATP500 Firmware | >=4.35<=5.01 | |
| Zyxel ATP500 Firmware | ||
| Zyxel ATP700 Firmware | >=4.35<=5.01 | |
| Zyxel ATP700 Firmware | ||
| Zyxel ATP800 | >=4.35<=5.01 | |
| Zyxel Zywall ATP800 Firmware | ||
| Zyxel Zywall VPN 50 Firmware | >=4.35<=5.01 | |
| Zyxel Zywall VPN 50 Firmware | ||
| Zyxel Zywall VPN 100 | >=4.35<=5.01 | |
| Zyxel Zywall VPN 100 | ||
| Zyxel Zywall VPN 300 Firmware | >=4.35<=5.01 | |
| Zyxel Zywall VPN 300 | ||
| Zyxel USG20W-VPN Firmware | >=4.35<=5.01 | |
| Zyxel USG20W-VPN Firmware | ||
| Zyxel USG 20W-VPN Firmware | >=4.35<=5.01 | |
| Zyxel USG20W-VPN Firmware | ||
| Zyxel USG2200-VPN Firmware | >=4.35<=5.01 | |
| Zyxel USG2200-VPN Firmware | ||
| Zyxel Zywall 1100 Firmware | >=4.35<=5.01 | |
| Zyxel Zywall 110 firmware | ||
| Zyxel ZyWALL USG 310 firmware | >=4.35<=5.01 | |
| Zyxel Zywall 310 Firmware | ||
| Zyxel Zywall 1100 Firmware | >=4.35<=5.01 | |
| Zyxel Zywall 1100 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-35029?
CVE-2021-35029 is classified as a critical authentication bypass vulnerability.
How do I fix CVE-2021-35029?
To mitigate CVE-2021-35029, users should update their Zyxel devices to the latest firmware version that addresses the vulnerability.
Which Zyxel products are affected by CVE-2021-35029?
CVE-2021-35029 affects various Zyxel USG and Zywall series firmware versions 4.35 through 4.64 and USG Flex, ATP, and VPN series firmware versions 4.35 through 5.01.
Can CVE-2021-35029 allow remote attacks?
Yes, CVE-2021-35029 allows remote attackers to execute arbitrary commands on affected devices.
Is there a known exploit for CVE-2021-35029?
Yes, CVE-2021-35029 has been reported to be actively exploited, making prompt remediation essential.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zyxel
- canonical/zyxel usg1900 firmware
- version/zyxel usg1900 firmware/4.35
- version/zyxel usg1900 firmware/4.64
- canonical/zyxel usg 1100 firmware
- version/zyxel usg 1100 firmware/4.35
- version/zyxel usg 1100 firmware/4.64
- canonical/zyxel usg1100 firmware
- canonical/zyxel usg 310 firmware
- version/zyxel usg 310 firmware/4.35
- version/zyxel usg 310 firmware/4.64
- canonical/zyxel usg 310
- canonical/zyxel usg210 firmware
- version/zyxel usg210 firmware/4.35
- version/zyxel usg210 firmware/4.64
- canonical/zyxel usg 110 firmware
- version/zyxel usg 110 firmware/4.35
- version/zyxel usg 110 firmware/4.64
- canonical/zyxel usg 110
- canonical/zyxel usg 40 firmware
- version/zyxel usg 40 firmware/4.35
- version/zyxel usg 40 firmware/4.64
- canonical/zyxel usg 40
- canonical/zyxel usg 40w firmware
- version/zyxel usg 40w firmware/4.35
- version/zyxel usg 40w firmware/4.64
- canonical/zyxel usg 60w firmware
- version/zyxel usg 60w firmware/4.35
- version/zyxel usg 60w firmware/4.64
- canonical/zyxel usg 60
- canonical/zyxel usg300 firmware
- version/zyxel usg300 firmware/4.35
- version/zyxel usg300 firmware/4.64
- canonical/zyxel usg1000
- version/zyxel usg1000/4.35
- version/zyxel usg1000/4.64
- canonical/zyxel usg2000 firmware
- version/zyxel usg2000 firmware/4.35
- version/zyxel usg2000 firmware/4.64
- canonical/zyxel usg20-vpn firmware
- version/zyxel usg20-vpn firmware/4.35
- version/zyxel usg20-vpn firmware/4.64
- canonical/zyxel usg20 firmware
- canonical/zyxel usg 20w
- version/zyxel usg 20w/4.35
- version/zyxel usg 20w/4.64
- canonical/zyxel usg50 firmware
- version/zyxel usg50 firmware/4.35
- version/zyxel usg50 firmware/4.64
- canonical/zyxel zywall usg 100 firmware
- version/zyxel zywall usg 100 firmware/4.35
- version/zyxel zywall usg 100 firmware/4.64
- canonical/zyxel usg100 firmware
- canonical/zyxel usg200 firmware
- version/zyxel usg200 firmware/4.35
- version/zyxel usg200 firmware/4.64
- canonical/zyxel usg flex 100 firmware
- version/zyxel usg flex 100 firmware/4.35
- version/zyxel usg flex 100 firmware/5.01
- canonical/zyxel usg flex firmware
- version/zyxel usg flex firmware/4.35
- version/zyxel usg flex firmware/5.01
- canonical/zyxel usg flex 200 firmware
- canonical/zyxel usg flex 500 firmware
- canonical/zyxel usg flex 100w firmware
- version/zyxel usg flex 100w firmware/4.35
- version/zyxel usg flex 100w firmware/5.01
- canonical/zyxel usg flex 700 firmware
- canonical/zyxel zywall atp100w firmware
- version/zyxel zywall atp100w firmware/4.35
- version/zyxel zywall atp100w firmware/5.01
- canonical/zyxel zywall atp100 firmware
- canonical/zyxel atp100w firmware
- version/zyxel atp100w firmware/4.35
- version/zyxel atp100w firmware/5.01
- canonical/zyxel zywall atp200
- version/zyxel zywall atp200/4.35
- version/zyxel zywall atp200/5.01
- canonical/zyxel atp500 firmware
- version/zyxel atp500 firmware/4.35
- version/zyxel atp500 firmware/5.01
- canonical/zyxel atp700 firmware
- version/zyxel atp700 firmware/4.35
- version/zyxel atp700 firmware/5.01
- canonical/zyxel atp800
- version/zyxel atp800/4.35
- version/zyxel atp800/5.01
- canonical/zyxel zywall atp800 firmware
- canonical/zyxel zywall vpn 50 firmware
- version/zyxel zywall vpn 50 firmware/4.35
- version/zyxel zywall vpn 50 firmware/5.01
- canonical/zyxel zywall vpn 100
- version/zyxel zywall vpn 100/4.35
- version/zyxel zywall vpn 100/5.01
- canonical/zyxel zywall vpn 300 firmware
- version/zyxel zywall vpn 300 firmware/4.35
- version/zyxel zywall vpn 300 firmware/5.01
- canonical/zyxel zywall vpn 300
- canonical/zyxel usg20w-vpn firmware
- version/zyxel usg20w-vpn firmware/4.35
- version/zyxel usg20w-vpn firmware/5.01
- canonical/zyxel usg 20w-vpn firmware
- version/zyxel usg 20w-vpn firmware/4.35
- version/zyxel usg 20w-vpn firmware/5.01
- canonical/zyxel usg2200-vpn firmware
- version/zyxel usg2200-vpn firmware/4.35
- version/zyxel usg2200-vpn firmware/5.01
- canonical/zyxel zywall 1100 firmware
- version/zyxel zywall 1100 firmware/4.35
- version/zyxel zywall 1100 firmware/5.01
- canonical/zyxel zywall 110 firmware
- canonical/zyxel zywall usg 310 firmware
- version/zyxel zywall usg 310 firmware/4.35
- version/zyxel zywall usg 310 firmware/5.01
- canonical/zyxel zywall 310 firmware