CVE-2022-0910
First published: Tue May 24 2022(Updated: )
A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware versions 4.32 through 5.21, that could allow an authenticated attacker to bypass the second authentication phase to connect the IPsec VPN server even though the two-factor authentication (2FA) was enabled.
Credit: security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel VPN100 | >=4.32<=5.21 | |
| Zyxel Zywall VPN100 | ||
| Zyxel VPN1000 Firmware | >=4.32<=5.21 | |
| Zyxel VPN1000 Firmware | ||
| Zyxel Zywall VPN 300 Firmware | >=4.32<=5.21 | |
| Zyxel Zywall VPN300 | ||
| Zyxel Zywall VPN 50 Firmware | >=4.32<=5.21 | |
| Zyxel VPN50 Firmware | ||
| Zyxel ZyWall ATP100 Firmware | >=4.32<=5.21 | |
| Zyxel ATP100 Firmware | ||
| Zyxel ATP100W Firmware | >=4.32<=5.21 | |
| Zyxel ATP100W Firmware | ||
| Zyxel ATP200 firmware | >=4.32<=5.21 | |
| Zyxel Zywall ATP200 | ||
| Zyxel ATP500 Firmware | >=4.32<=5.21 | |
| Zyxel ATP500 Firmware | ||
| Zyxel Zywall ATP700 | >=4.32<=5.21 | |
| Zyxel ATP700 Firmware | ||
| Zyxel Zywall ATP800 Firmware | >=4.32<=5.21 | |
| Zyxel Zywall ATP800 Firmware | ||
| Zyxel USG 110 | >=4.32<=4.71 | |
| Zyxel USG 110 Firmware | ||
| Zyxel USG1100 firmware | >=4.32<=4.71 | |
| Zyxel USG 1100 firmware | ||
| Zyxel USG1900 Firmware | >=4.32<=4.71 | |
| Zyxel USG1900 | ||
| Zyxel USG 20W | >=4.32<=4.71 | |
| Zyxel USG20 | ||
| Zyxel USG 20W-VPN Firmware | >=4.32<=4.71 | |
| Zyxel USG20 | ||
| Zyxel USG2200-VPN Firmware | >=4.32<=4.71 | |
| Zyxel USG2200-VPN Firmware | ||
| Zyxel ZyWALL USG 310 firmware | >=4.32<=4.71 | |
| Zyxel ZyWALL USG 310 | ||
| Zyxel USG40W Firmware | >=4.32<=4.71 | |
| Zyxel USG40W | ||
| Zyxel USG40W Firmware | >=4.32<=4.71 | |
| Zyxel USG40W | ||
| Zyxel USG60 Firmware | >=4.32<=4.71 | |
| Zyxel USG60 Firmware | ||
| Zyxel USG60W Firmware | >=4.32<=4.71 | |
| Zyxel USG 60w firmware | ||
| Zyxel USG Flex 100 firmware | >=4.50<=5.21 | |
| Zyxel USG Flex 100 firmware | ||
| Zyxel USG FLEX 100w firmware | >=4.50<=5.21 | |
| Zyxel USG FLEX 100w firmware | ||
| Zyxel USG FLEX firmware | >=4.50<=5.21 | |
| Zyxel USG FLEX 200 firmware | ||
| Zyxel USG FLEX firmware | >=4.50<=5.21 | |
| Zyxel USG FLEX 500 firmware | ||
| Zyxel USG FLEX firmware | >=4.50<=5.21 | |
| Zyxel USG FLEX 700 firmware | ||
| Zyxel USG200 Firmware | >=4.32<=4.71 | |
| Zyxel USG200 Firmware | ||
| Zyxel USG20-VPN Firmware | >=4.32<=4.71 | |
| Zyxel USG20 Firmware | ||
| Zyxel USG210 Firmware | >=4.32<=4.71 | |
| Zyxel USG210 Firmware | ||
| Zyxel USG2200-VPN Firmware | >=4.32<=4.71 | |
| Zyxel USG2200-VPN | ||
| Zyxel USG300 Firmware | >=4.32<=4.71 | |
| Zyxel USG300 Firmware | ||
| Zyxel USG 310 firmware | >=4.32<=4.71 | |
| Zyxel USG 310 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-0910?
CVE-2022-0910 has been rated as a high severity vulnerability due to its potential to downgrade authentication methods.
How do I fix CVE-2022-0910?
To remediate CVE-2022-0910, upgrade your Zyxel USG/ZyWALL, USG FLEX, ATP, or VPN series firmware to a version that is not affected.
Which devices are affected by CVE-2022-0910?
CVE-2022-0910 affects various Zyxel devices including the USG/ZyWALL series, USG FLEX series, ATP series, and VPN series running specific firmware versions.
What does the CVE-2022-0910 vulnerability exploit?
CVE-2022-0910 exploits a flaw that allows attackers to downgrade two-factor authentication to one-factor authentication.
Is my Zyxel device vulnerable to CVE-2022-0910?
If your Zyxel device is running any of the vulnerable firmware versions listed for CVE-2022-0910, it is indeed at risk and should be updated.
- agent/type
- agent/weakness
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zyxel
- canonical/zyxel vpn100
- version/zyxel vpn100/4.32
- version/zyxel vpn100/5.21
- canonical/zyxel zywall vpn100
- canonical/zyxel vpn1000 firmware
- version/zyxel vpn1000 firmware/4.32
- version/zyxel vpn1000 firmware/5.21
- canonical/zyxel zywall vpn 300 firmware
- version/zyxel zywall vpn 300 firmware/4.32
- version/zyxel zywall vpn 300 firmware/5.21
- canonical/zyxel zywall vpn300
- canonical/zyxel zywall vpn 50 firmware
- version/zyxel zywall vpn 50 firmware/4.32
- version/zyxel zywall vpn 50 firmware/5.21
- canonical/zyxel vpn50 firmware
- canonical/zyxel zywall atp100 firmware
- version/zyxel zywall atp100 firmware/4.32
- version/zyxel zywall atp100 firmware/5.21
- canonical/zyxel atp100 firmware
- canonical/zyxel atp100w firmware
- version/zyxel atp100w firmware/4.32
- version/zyxel atp100w firmware/5.21
- canonical/zyxel atp200 firmware
- version/zyxel atp200 firmware/4.32
- version/zyxel atp200 firmware/5.21
- canonical/zyxel zywall atp200
- canonical/zyxel atp500 firmware
- version/zyxel atp500 firmware/4.32
- version/zyxel atp500 firmware/5.21
- canonical/zyxel zywall atp700
- version/zyxel zywall atp700/4.32
- version/zyxel zywall atp700/5.21
- canonical/zyxel atp700 firmware
- canonical/zyxel zywall atp800 firmware
- version/zyxel zywall atp800 firmware/4.32
- version/zyxel zywall atp800 firmware/5.21
- canonical/zyxel usg 110
- version/zyxel usg 110/4.32
- version/zyxel usg 110/4.71
- canonical/zyxel usg 110 firmware
- canonical/zyxel usg1100 firmware
- version/zyxel usg1100 firmware/4.32
- version/zyxel usg1100 firmware/4.71
- canonical/zyxel usg 1100 firmware
- canonical/zyxel usg1900 firmware
- version/zyxel usg1900 firmware/4.32
- version/zyxel usg1900 firmware/4.71
- canonical/zyxel usg1900
- canonical/zyxel usg 20w
- version/zyxel usg 20w/4.32
- version/zyxel usg 20w/4.71
- canonical/zyxel usg20
- canonical/zyxel usg 20w-vpn firmware
- version/zyxel usg 20w-vpn firmware/4.32
- version/zyxel usg 20w-vpn firmware/4.71
- canonical/zyxel usg2200-vpn firmware
- version/zyxel usg2200-vpn firmware/4.32
- version/zyxel usg2200-vpn firmware/4.71
- canonical/zyxel zywall usg 310 firmware
- version/zyxel zywall usg 310 firmware/4.32
- version/zyxel zywall usg 310 firmware/4.71
- canonical/zyxel zywall usg 310
- canonical/zyxel usg40w firmware
- version/zyxel usg40w firmware/4.32
- version/zyxel usg40w firmware/4.71
- canonical/zyxel usg40w
- canonical/zyxel usg60 firmware
- version/zyxel usg60 firmware/4.32
- version/zyxel usg60 firmware/4.71
- canonical/zyxel usg60w firmware
- version/zyxel usg60w firmware/4.32
- version/zyxel usg60w firmware/4.71
- canonical/zyxel usg 60w firmware
- canonical/zyxel usg flex 100 firmware
- version/zyxel usg flex 100 firmware/4.50
- version/zyxel usg flex 100 firmware/5.21
- canonical/zyxel usg flex 100w firmware
- version/zyxel usg flex 100w firmware/4.50
- version/zyxel usg flex 100w firmware/5.21
- canonical/zyxel usg flex firmware
- version/zyxel usg flex firmware/4.50
- version/zyxel usg flex firmware/5.21
- canonical/zyxel usg flex 200 firmware
- canonical/zyxel usg flex 500 firmware
- canonical/zyxel usg flex 700 firmware
- canonical/zyxel usg200 firmware
- version/zyxel usg200 firmware/4.32
- version/zyxel usg200 firmware/4.71
- canonical/zyxel usg20-vpn firmware
- version/zyxel usg20-vpn firmware/4.32
- version/zyxel usg20-vpn firmware/4.71
- canonical/zyxel usg20 firmware
- canonical/zyxel usg210 firmware
- version/zyxel usg210 firmware/4.32
- version/zyxel usg210 firmware/4.71
- canonical/zyxel usg2200-vpn
- canonical/zyxel usg300 firmware
- version/zyxel usg300 firmware/4.32
- version/zyxel usg300 firmware/4.71
- canonical/zyxel usg 310 firmware
- version/zyxel usg 310 firmware/4.32
- version/zyxel usg 310 firmware/4.71
- canonical/zyxel usg 310