high
7.8
CWE
20 119
Advisory Published
Updated

CVE-2022-26531: Input Validation

First published: Tue May 24 2022(Updated: )

Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, VPN series firmware versions 4.30 through 5.21, NSG series firmware versions 1.00 through 1.33 Patch 4, NXC2500 firmware version 6.10(AAIG.3) and earlier versions, NAP203 firmware version 6.25(ABFA.7) and earlier versions, NWA50AX firmware version 6.25(ABYW.5) and earlier versions, WAC500 firmware version 6.30(ABVS.2) and earlier versions, and WAX510D firmware version 6.30(ABTF.2) and earlier versions, that could allow a local authenticated attacker to cause a buffer overflow or a system crash via a crafted payload.

Credit: security@zyxel.com.tw security@zyxel.com.tw

Affected SoftwareAffected VersionHow to fix
Zyxel VPN100>=4.30<=5.21
Zyxel Zywall VPN100
Zyxel VPN1000 Firmware>=4.30<=5.21
Zyxel VPN1000 Firmware
Zyxel Zywall VPN 300 Firmware>=4.30<=5.21
Zyxel Zywall VPN300
Zyxel Zywall VPN 50 Firmware>=4.30<=5.21
Zyxel VPN50 Firmware
Zyxel ZyWall ATP100 Firmware>=4.32<=5.21
Zyxel ATP100 Firmware
Zyxel ATP100W Firmware>=4.32<=5.21
Zyxel ATP100W Firmware
Zyxel ATP200 firmware>=4.32<=5.21
Zyxel Zywall ATP200
Zyxel ATP500 Firmware>=4.32<=5.21
Zyxel ATP500 Firmware
Zyxel Zywall ATP700>=4.32<=5.21
Zyxel ATP700 Firmware
Zyxel Zywall ATP800 Firmware>=4.32<=5.21
Zyxel Zywall ATP800 Firmware
Zyxel USG 110>=4.09<=4.71
Zyxel USG 110 Firmware
Zyxel USG1100 firmware>=4.09<=4.71
Zyxel USG 1100 firmware
Zyxel USG1900 Firmware>=4.09<=4.71
Zyxel USG1900
Zyxel USG 20W>=4.09<=4.71
Zyxel USG20
Zyxel USG 20W-VPN Firmware>=4.09<=4.71
Zyxel USG20
Zyxel USG2200-VPN Firmware>=4.09<=4.71
Zyxel USG2200-VPN Firmware
Zyxel ZyWALL USG 310 firmware>=4.09<=4.71
Zyxel ZyWALL USG 310
Zyxel USG40W Firmware>=4.09<=4.71
Zyxel USG40W
Zyxel USG40W Firmware>=4.09<=4.71
Zyxel USG40W
Zyxel USG60 Firmware>=4.09<=4.71
Zyxel USG60 Firmware
Zyxel USG60W Firmware>=4.09<=4.71
Zyxel USG 60w firmware
Zyxel USG Flex 100 firmware>=4.50<=5.21
Zyxel USG Flex 100 firmware
Zyxel USG FLEX 100w firmware>=4.50<=5.21
Zyxel USG FLEX 100w firmware
Zyxel USG FLEX firmware>=4.50<=5.21
Zyxel USG FLEX 200 firmware
Zyxel USG FLEX firmware>=4.50<=5.21
Zyxel USG FLEX 500 firmware
Zyxel USG FLEX firmware>=4.50<=5.21
Zyxel USG FLEX 700 firmware
Zyxel USG200 Firmware>=4.09<=4.71
Zyxel USG200 Firmware
Zyxel USG20-VPN Firmware>=4.09<=4.71
Zyxel USG20 Firmware
Zyxel USG210 Firmware>=4.09<=4.71
Zyxel USG210 Firmware
Zyxel USG2200-VPN Firmware>=4.09<=4.71
Zyxel USG2200-VPN
Zyxel USG300 Firmware>=4.09<=4.71
Zyxel USG300 Firmware
Zyxel USG 310 firmware>=4.09<=4.71
Zyxel USG 310
Zyxel NSG firmware>=1.00<1.33
Zyxel NSG firmware=1.33
Zyxel NSG firmware=1.33-patch1
Zyxel NSG firmware=1.33-patch2
Zyxel NSG firmware=1.33-patch3
Zyxel NSG firmware=1.33-patch4
Zyxel NSG firmware
Zyxel NSG100 Firmware>=1.00<1.33
Zyxel NSG100 Firmware=1.33
Zyxel NSG100 Firmware=1.33-patch1
Zyxel NSG100 Firmware=1.33-patch2
Zyxel NSG100 Firmware=1.33-patch3
Zyxel NSG100 Firmware=1.33-patch4
Zyxel NSG100 Firmware
Zyxel NSG50 Firmware>=1.00<1.33
Zyxel NSG50 Firmware=1.33
Zyxel NSG50 Firmware=1.33-patch1
Zyxel NSG50 Firmware=1.33-patch2
Zyxel NSG50 Firmware=1.33-patch3
Zyxel NSG50 Firmware=1.33-patch4
Zyxel NSG firmware
Zyxel NXC2500 firmware<=6.10\(aaig.3\)
Zyxel NXC2500 firmware
Zyxel NXC5500<=6.10\(aaos.3\)
Zyxel NXC5500 Firmware
Zyxel NAP203 Firmware<=6.25\(abfa.7\)
Zyxel NAP203 firmware
Zyxel NAP303<=6.25\(abex.7\)
Zyxel NAP303
Zyxel NAP353<=6.25\(abey.7\)
Zyxel NAP353 Firmware
Zyxel NWA50AX-Pro firmware<=6.25\(abyw.5\)
Zyxel NWA50AX-PRO
Zyxel NWA55AXE Firmware<=6.25\(abzl.5\)
Zyxel NWA55AXE Firmware
Zyxel NWA90AX Pro Firmware<=6.27\(accv.2\)
Zyxel NWA90AX Firmware
Zyxel NWA110AX<=6.30\(abtg.2\)
Zyxel NWA110AX firmware
Zyxel NWA210AX<=6.30\(abtd.2\)
Zyxel NWA210AX Firmware
Zyxel NWA5123-AC-HD Firmware<=6.25\(abin.6\)
Zyxel NWA1123-AC HD
Zyxel NWA1123-AC PRO firmware<=6.25\(abhd.7\)
Zyxel NWA1123-AC-PRO Firmware
Zyxel NWA1123-AC PRO firmware<=6.30\(abvt.2\)
Zyxel NWA1123-AC PRO firmware
Zyxel NWA1302-AC Firmware<=6.25\(abku.6\)
Zyxel NWA1302-AC Firmware
Zyxel NWA5123-AC HD Firmware<=6.25\(abim.6\)
Zyxel NWA5123-AC HD
Zyxel WAC500H Firmware<=6.30\(abwa.2\)
Zyxel WAC500H Firmware
Zyxel WAC500H Firmware<=6.30\(abvs.2\)
Zyxel WAC500 firmware
Zyxel WAC5302D-SV2<=6.10\(abfh.10\)
Zyxel WAC5302D-S Firmware
Zyxel WAC5302D-SV2<=6.25\(abvz.6\)
Zyxel WAC5302D-SV2 Firmware
Zyxel WAC6103D-I<=6.25\(aaxh.7\)
Zyxel WAC6103D-I Firmware
Zyxel WAC6303D-S<=6.25\(abgl.6\)
Zyxel WAC6303D-S firmware
Zyxel WAC6502D-S<=6.25\(aasd.7\)
Zyxel WAC6502D-E Firmware
Zyxel WAC6502D-S<=6.25\(aase.7\)
Zyxel WAC6502D-S Firmware
Zyxel WAC6503D-S Firmware<=6.25\(aasf.7\)
Zyxel WAC6503D-S Firmware
Zyxel WAC6553D-S<=6.25\(aasg.7\)
Zyxel WAC6553D-S Firmware
Zyxel WAC6552D-S Firmware<=6.25\(abio.7\)
Zyxel WAC6552D-S Firmware
Zyxel WAX510D firmware<=6.30\(abtf.2\)
Zyxel WAX510D firmware
Zyxel WAX610D<=6.30\(abte.2\)
Zyxel WAX610D Firmware
Zyxel WAX630S Firmware<=6.30\(abzd.2\)
Zyxel WAX630S Firmware
Zyxel WAX650S Firmware<=6.30\(abrm.2\)
Zyxel WAX650S Firmware
All of
Zyxel VPN100>=4.30<=5.21
Zyxel Zywall VPN100
All of
Zyxel VPN1000 Firmware>=4.30<=5.21
Zyxel VPN1000 Firmware
All of
Zyxel Zywall VPN 300 Firmware>=4.30<=5.21
Zyxel Zywall VPN300
All of
Zyxel Zywall VPN 50 Firmware>=4.30<=5.21
Zyxel VPN50 Firmware
All of
Zyxel ZyWall ATP100 Firmware>=4.32<=5.21
Zyxel ATP100 Firmware
All of
Zyxel ATP100W Firmware>=4.32<=5.21
Zyxel ATP100W Firmware
All of
Zyxel ATP200 firmware>=4.32<=5.21
Zyxel Zywall ATP200
All of
Zyxel ATP500 Firmware>=4.32<=5.21
Zyxel ATP500 Firmware
All of
Zyxel Zywall ATP700>=4.32<=5.21
Zyxel ATP700 Firmware
All of
Zyxel Zywall ATP800 Firmware>=4.32<=5.21
Zyxel Zywall ATP800 Firmware
All of
Zyxel USG 110>=4.09<=4.71
Zyxel USG 110 Firmware
All of
Zyxel USG1100 firmware>=4.09<=4.71
Zyxel USG 1100 firmware
All of
Zyxel USG1900 Firmware>=4.09<=4.71
Zyxel USG1900
All of
Zyxel USG 20W>=4.09<=4.71
Zyxel USG20
All of
Zyxel USG 20W-VPN Firmware>=4.09<=4.71
Zyxel USG20
All of
Zyxel USG2200-VPN Firmware>=4.09<=4.71
Zyxel USG2200-VPN Firmware
All of
Zyxel ZyWALL USG 310 firmware>=4.09<=4.71
Zyxel ZyWALL USG 310
All of
Zyxel USG40W Firmware>=4.09<=4.71
Zyxel USG40W
All of
Zyxel USG40W Firmware>=4.09<=4.71
Zyxel USG40W
All of
Zyxel USG60 Firmware>=4.09<=4.71
Zyxel USG60 Firmware
All of
Zyxel USG60W Firmware>=4.09<=4.71
Zyxel USG 60w firmware
All of
Zyxel USG Flex 100 firmware>=4.50<=5.21
Zyxel USG Flex 100 firmware
All of
Zyxel USG FLEX 100w firmware>=4.50<=5.21
Zyxel USG FLEX 100w firmware
All of
Zyxel USG FLEX firmware>=4.50<=5.21
Zyxel USG FLEX 200 firmware
All of
Zyxel USG FLEX firmware>=4.50<=5.21
Zyxel USG FLEX 500 firmware
All of
Zyxel USG FLEX firmware>=4.50<=5.21
Zyxel USG FLEX 700 firmware
All of
Zyxel USG200 Firmware>=4.09<=4.71
Zyxel USG200 Firmware
All of
Zyxel USG20-VPN Firmware>=4.09<=4.71
Zyxel USG20 Firmware
All of
Zyxel USG210 Firmware>=4.09<=4.71
Zyxel USG210 Firmware
All of
Zyxel USG2200-VPN Firmware>=4.09<=4.71
Zyxel USG2200-VPN
All of
Zyxel USG300 Firmware>=4.09<=4.71
Zyxel USG300 Firmware
All of
Zyxel USG 310 firmware>=4.09<=4.71
Zyxel USG 310
All of
Any of
Zyxel NSG firmware>=1.00<1.33
Zyxel NSG firmware=1.33
Zyxel NSG firmware=1.33-patch1
Zyxel NSG firmware=1.33-patch2
Zyxel NSG firmware=1.33-patch3
Zyxel NSG firmware=1.33-patch4
Zyxel NSG firmware
All of
Any of
Zyxel NSG100 Firmware>=1.00<1.33
Zyxel NSG100 Firmware=1.33
Zyxel NSG100 Firmware=1.33-patch1
Zyxel NSG100 Firmware=1.33-patch2
Zyxel NSG100 Firmware=1.33-patch3
Zyxel NSG100 Firmware=1.33-patch4
Zyxel NSG100 Firmware
All of
Any of
Zyxel NSG50 Firmware>=1.00<1.33
Zyxel NSG50 Firmware=1.33
Zyxel NSG50 Firmware=1.33-patch1
Zyxel NSG50 Firmware=1.33-patch2
Zyxel NSG50 Firmware=1.33-patch3
Zyxel NSG50 Firmware=1.33-patch4
Zyxel NSG firmware
All of
Zyxel NXC2500 firmware<=6.10\(aaig.3\)
Zyxel NXC2500 firmware
All of
Zyxel NXC5500<=6.10\(aaos.3\)
Zyxel NXC5500 Firmware
All of
Zyxel NAP203 Firmware<=6.25\(abfa.7\)
Zyxel NAP203 firmware
All of
Zyxel NAP303<=6.25\(abex.7\)
Zyxel NAP303
All of
Zyxel NAP353<=6.25\(abey.7\)
Zyxel NAP353 Firmware
All of
Zyxel NWA50AX-Pro firmware<=6.25\(abyw.5\)
Zyxel NWA50AX-PRO
All of
Zyxel NWA55AXE Firmware<=6.25\(abzl.5\)
Zyxel NWA55AXE Firmware
All of
Zyxel NWA90AX Pro Firmware<=6.27\(accv.2\)
Zyxel NWA90AX Firmware
All of
Zyxel NWA110AX<=6.30\(abtg.2\)
Zyxel NWA110AX firmware
All of
Zyxel NWA210AX<=6.30\(abtd.2\)
Zyxel NWA210AX Firmware
All of
Zyxel NWA5123-AC-HD Firmware<=6.25\(abin.6\)
Zyxel NWA1123-AC HD
All of
Zyxel NWA1123-AC PRO firmware<=6.25\(abhd.7\)
Zyxel NWA1123-AC-PRO Firmware
All of
Zyxel NWA1123-AC PRO firmware<=6.30\(abvt.2\)
Zyxel NWA1123-AC PRO firmware
All of
Zyxel NWA1302-AC Firmware<=6.25\(abku.6\)
Zyxel NWA1302-AC Firmware
All of
Zyxel NWA5123-AC HD Firmware<=6.25\(abim.6\)
Zyxel NWA5123-AC HD
All of
Zyxel WAC500H Firmware<=6.30\(abwa.2\)
Zyxel WAC500H Firmware
All of
Zyxel WAC500H Firmware<=6.30\(abvs.2\)
Zyxel WAC500 firmware
All of
Zyxel WAC5302D-SV2<=6.10\(abfh.10\)
Zyxel WAC5302D-S Firmware
All of
Zyxel WAC5302D-SV2<=6.25\(abvz.6\)
Zyxel WAC5302D-SV2 Firmware
All of
Zyxel WAC6103D-I<=6.25\(aaxh.7\)
Zyxel WAC6103D-I Firmware
All of
Zyxel WAC6303D-S<=6.25\(abgl.6\)
Zyxel WAC6303D-S firmware
All of
Zyxel WAC6502D-S<=6.25\(aasd.7\)
Zyxel WAC6502D-E Firmware
All of
Zyxel WAC6502D-S<=6.25\(aase.7\)
Zyxel WAC6502D-S Firmware
All of
Zyxel WAC6503D-S Firmware<=6.25\(aasf.7\)
Zyxel WAC6503D-S Firmware
All of
Zyxel WAC6553D-S<=6.25\(aasg.7\)
Zyxel WAC6553D-S Firmware
All of
Zyxel WAC6552D-S Firmware<=6.25\(abio.7\)
Zyxel WAC6552D-S Firmware
All of
Zyxel WAX510D firmware<=6.30\(abtf.2\)
Zyxel WAX510D firmware
All of
Zyxel WAX610D<=6.30\(abte.2\)
Zyxel WAX610D Firmware
All of
Zyxel WAX630S Firmware<=6.30\(abzd.2\)
Zyxel WAX630S Firmware
All of
Zyxel WAX650S Firmware<=6.30\(abrm.2\)
Zyxel WAX650S Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2022-26531?

    CVE-2022-26531 has been rated as high severity due to multiple improper input validation flaws that could allow unauthorized command execution.

  • How do I fix CVE-2022-26531?

    To fix CVE-2022-26531, it is recommended to upgrade the affected firmware versions of Zyxel devices to the latest available versions.

  • Which Zyxel devices are affected by CVE-2022-26531?

    CVE-2022-26531 affects various Zyxel devices, including the USG, ZyWALL, USG FLEX, and ATP series with specific firmware versions.

  • Can CVE-2022-26531 be exploited remotely?

    Yes, CVE-2022-26531 can potentially be exploited remotely if the affected Zyxel devices are exposed to the internet.

  • Has Zyxel released any security patches for CVE-2022-26531?

    Yes, Zyxel has released security patches to address CVE-2022-26531, and users are advised to apply these patches promptly.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203