CVE-2023-22918
First published: Mon Apr 24 2023(Updated: )
A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through 5.35, VPN series firmware versions 4.30 through 5.35, NWA110AX firmware version 6.50(ABTG.2) and earlier versions, WAC500 firmware version 6.50(ABVS.0) and earlier versions, and WAX510D firmware version 6.50(ABTF.2) and earlier versions, which could allow a remote authenticated attacker to retrieve encrypted information of the administrator on an affected device.
Credit: security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel ATP200 firmware | >=4.32<5.36 | |
| Zyxel Zywall ATP200 | ||
| Zyxel ZyWall ATP100 Firmware | >=4.32<5.36 | |
| Zyxel ATP100 Firmware | ||
| Zyxel Zywall ATP700 Firmware | >=4.32<5.36 | |
| Zyxel ATP700 Firmware | ||
| Zyxel ATP500 Firmware | >=4.32<5.36 | |
| Zyxel ATP500 Firmware | ||
| Zyxel ATP100W Firmware | >=4.32<5.36 | |
| Zyxel ATP100W Firmware | ||
| Zyxel ATP800 | >=4.32<5.36 | |
| Zyxel ATP800 Firmware | ||
| Zyxel USG Flex 100 firmware | >=4.50<5.36 | |
| Zyxel USG FLEX 100 | ||
| Zyxel USG FLEX 50(W) series firmware | >=4.50<5.36 | |
| Zyxel USG FLEX 50 | ||
| Zyxel USG FLEX firmware | >=4.50<5.36 | |
| Zyxel USG FLEX 200 firmware | ||
| Zyxel USG FLEX firmware | >=4.50<5.36 | |
| Zyxel USG FLEX 500 firmware | ||
| Zyxel USG FLEX firmware | >=4.50<5.36 | |
| Zyxel USG FLEX 700 firmware | ||
| Zyxel USG FLEX 100w firmware | >=4.50<5.36 | |
| Zyxel USG FLEX 100w firmware | ||
| Zyxel USG 20w-VPN Firmware | >=4.16<5.36 | |
| Zyxel USG20 | ||
| Zyxel USG FLEX 50w | >=4.16<5.36 | |
| Zyxel USG FLEX 50(W) series firmware | ||
| Zyxel USG20-VPN | >=4.30<5.36 | |
| Zyxel USG20 | ||
| Zyxel VPN100 | >=4.30<5.36 | |
| Zyxel VPN100 Firmware | ||
| Zyxel VPN1000 Firmware | >=4.30<5.36 | |
| Zyxel VPN1000 Firmware | ||
| Zyxel Zywall VPN 300 Firmware | >=4.30<5.36 | |
| Zyxel Zywall VPN300 | ||
| Zyxel Zywall VPN 50 Firmware | >=4.30<5.36 | |
| Zyxel VPN50 Firmware | ||
| Zyxel NAP203 Firmware | <=6.28\(abfa.0\) | |
| Zyxel NAP203 firmware | ||
| Zyxel NAP303 | <=6.28\(abex.0\) | |
| Zyxel NAP303 | ||
| Zyxel NAP353 | <=6.28\(abey.0\) | |
| Zyxel NAP353 Firmware | ||
| Zyxel NWA110AX firmware | <=6.50\(abtg.2\) | |
| Zyxel NWA110AX | ||
| Zyxel NWA1123-AC-HD Firmware | <=6.25\(abin.9\) | |
| Zyxel NWA5123-AC HD Firmware | ||
| Zyxel NWA1123-AC PRO firmware | <=6.28\(abhd.0\) | |
| Zyxel NWA1123-AC-PRO Firmware | ||
| Zyxel NWA1123-AC PRO firmware | <=6.50\(abvt.0\) | |
| Zyxel NWA1123-AC PRO firmware | ||
| Zyxel NWA210AX | <=6.50\(abtd.2\) | |
| Zyxel NWA210AX Firmware | ||
| Zyxel nwa220ax-6e firmware | <=6.50\(acco.2\) | |
| Zyxel NWA220AX-6E | ||
| Zyxel NWA50AX-Pro firmware | <=6.55\(acge.1\) | |
| Zyxel NWA50AX-PRO | ||
| Zyxel NWA50AX Pro | <=6.50\(acge.0\) | |
| Zyxel NWA50AX-Pro firmware | ||
| Zyxel NWA5123-AC HD | <=6.25\(abim.9\) | |
| Zyxel NWA5123-AC HD Firmware | ||
| Zyxel NWA55AXE Firmware | <=6.29\(abzl.1\) | |
| Zyxel NWA55AXE Firmware | ||
| Zyxel NWA90AX Pro Firmware | <=6.29\(accv.1\) | |
| Zyxel NWA90AX Firmware | ||
| Zyxel NWA90AX Pro Firmware | <=6.50\(acgf.0\) | |
| Zyxel NWA90AX-PRO Firmware | ||
| Zyxel WAC500H Firmware | <=6.50\(abvs.0\) | |
| Zyxel WAC500 firmware | ||
| Zyxel WAC500H Firmware | <=6.50\(abwa.0\) | |
| Zyxel WAC500H Firmware | ||
| Zyxel WAC5302D-SV2 | <=6.25\(abvz.9\) | |
| Zyxel WAC5302D-SV2 Firmware | ||
| Zyxel WAC6103D-I | <=6.28\(aaxh.0\) | |
| Zyxel WAC6103D-I Firmware | ||
| Zyxel WAC6303D-S | <=6.25\(abgl.9\) | |
| Zyxel WAC6303D-S firmware | ||
| Zyxel WAC6502D-S | <=6.28\(aasd.0\) | |
| Zyxel WAC6502D-E Firmware | ||
| Zyxel WAC6502D-S | <=6.28\(aase.0\) | |
| Zyxel WAC6502D-S Firmware | ||
| Zyxel WAC6503D-S Firmware | <=6.28\(aasf.0\) | |
| Zyxel WAC6503D-S Firmware | ||
| Zyxel WAC6552D-S Firmware | <=6.28\(abio.0\) | |
| Zyxel WAC6552D-S Firmware | ||
| Zyxel WAC6553D-E | <=6.28\(aasg.0\) | |
| Zyxel WAC6553D-E | ||
| Zyxel WAX510D firmware | <=6.50\(abtf.2\) | |
| Zyxel WAX510D firmware | ||
| Zyxel WAX610D | <=6.50\(abte.2\) | |
| Zyxel WAX610D Firmware | ||
| Zyxel WAX620D-6E | <=6.50\(accn.2\) | |
| Zyxel WAX620D-6E Firmware | ||
| Zyxel WAX630S Firmware | <=6.50\(abzd.2\) | |
| Zyxel WAX630S Firmware | ||
| Zyxel WAX640S-6E | <=6.50\(accm.2\) | |
| Zyxel WAX640S-6E Firmware | ||
| Zyxel wax650s firmware | <=6.50\(abrm.2\) | |
| Zyxel WAX650S | ||
| Zyxel WAX655E Firmware | <=6.50\(acdo.2\) | |
| Zyxel WAX655E Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-22918?
CVE-2023-22918 has been classified as a medium severity vulnerability.
How can I fix CVE-2023-22918?
To mitigate CVE-2023-22918, upgrade affected Zyxel devices to the latest firmware versions provided by Zyxel.
Which Zyxel products are affected by CVE-2023-22918?
CVE-2023-22918 affects multiple Zyxel products including ATP series, USG FLEX series, and USG 20W-VPN firmware versions from 4.32 to 5.35.
What type of vulnerability is CVE-2023-22918?
CVE-2023-22918 is a post-authentication information exposure vulnerability in Zyxel CGI programs.
Is CVE-2023-22918 actively being exploited?
As of now, there is no reported active exploitation of CVE-2023-22918.
- agent/type
- agent/author
- agent/weakness
- agent/remedy
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/source
- agent/first-publish-date
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zyxel
- canonical/zyxel atp200 firmware
- version/zyxel atp200 firmware/4.32
- canonical/zyxel zywall atp200
- canonical/zyxel zywall atp100 firmware
- version/zyxel zywall atp100 firmware/4.32
- canonical/zyxel atp100 firmware
- canonical/zyxel zywall atp700 firmware
- version/zyxel zywall atp700 firmware/4.32
- canonical/zyxel atp700 firmware
- canonical/zyxel atp500 firmware
- version/zyxel atp500 firmware/4.32
- canonical/zyxel atp100w firmware
- version/zyxel atp100w firmware/4.32
- canonical/zyxel atp800
- version/zyxel atp800/4.32
- canonical/zyxel atp800 firmware
- canonical/zyxel usg flex 100 firmware
- version/zyxel usg flex 100 firmware/4.50
- canonical/zyxel usg flex 100
- canonical/zyxel usg flex 50(w) series firmware
- version/zyxel usg flex 50(w) series firmware/4.50
- canonical/zyxel usg flex 50
- canonical/zyxel usg flex firmware
- version/zyxel usg flex firmware/4.50
- canonical/zyxel usg flex 200 firmware
- canonical/zyxel usg flex 500 firmware
- canonical/zyxel usg flex 700 firmware
- canonical/zyxel usg flex 100w firmware
- version/zyxel usg flex 100w firmware/4.50
- canonical/zyxel usg 20w-vpn firmware
- version/zyxel usg 20w-vpn firmware/4.16
- canonical/zyxel usg20
- canonical/zyxel usg flex 50w
- version/zyxel usg flex 50w/4.16
- canonical/zyxel usg20-vpn
- version/zyxel usg20-vpn/4.30
- canonical/zyxel vpn100
- version/zyxel vpn100/4.30
- canonical/zyxel vpn100 firmware
- canonical/zyxel vpn1000 firmware
- version/zyxel vpn1000 firmware/4.30
- canonical/zyxel zywall vpn 300 firmware
- version/zyxel zywall vpn 300 firmware/4.30
- canonical/zyxel zywall vpn300
- canonical/zyxel zywall vpn 50 firmware
- version/zyxel zywall vpn 50 firmware/4.30
- canonical/zyxel vpn50 firmware
- canonical/zyxel nap203 firmware
- version/zyxel nap203 firmware/6.28\(abfa.0\)
- canonical/zyxel nap303
- version/zyxel nap303/6.28\(abex.0\)
- canonical/zyxel nap353
- version/zyxel nap353/6.28\(abey.0\)
- canonical/zyxel nap353 firmware
- canonical/zyxel nwa110ax firmware
- version/zyxel nwa110ax firmware/6.50\(abtg.2\)
- canonical/zyxel nwa110ax
- canonical/zyxel nwa1123-ac-hd firmware
- version/zyxel nwa1123-ac-hd firmware/6.25\(abin.9\)
- canonical/zyxel nwa5123-ac hd firmware
- canonical/zyxel nwa1123-ac pro firmware
- version/zyxel nwa1123-ac pro firmware/6.28\(abhd.0\)
- canonical/zyxel nwa1123-ac-pro firmware
- version/zyxel nwa1123-ac pro firmware/6.50\(abvt.0\)
- canonical/zyxel nwa210ax
- version/zyxel nwa210ax/6.50\(abtd.2\)
- canonical/zyxel nwa210ax firmware
- canonical/zyxel nwa220ax-6e firmware
- version/zyxel nwa220ax-6e firmware/6.50\(acco.2\)
- canonical/zyxel nwa220ax-6e
- canonical/zyxel nwa50ax-pro firmware
- version/zyxel nwa50ax-pro firmware/6.55\(acge.1\)
- canonical/zyxel nwa50ax-pro
- canonical/zyxel nwa50ax pro
- version/zyxel nwa50ax pro/6.50\(acge.0\)
- canonical/zyxel nwa5123-ac hd
- version/zyxel nwa5123-ac hd/6.25\(abim.9\)
- canonical/zyxel nwa55axe firmware
- version/zyxel nwa55axe firmware/6.29\(abzl.1\)
- canonical/zyxel nwa90ax pro firmware
- version/zyxel nwa90ax pro firmware/6.29\(accv.1\)
- canonical/zyxel nwa90ax firmware
- version/zyxel nwa90ax pro firmware/6.50\(acgf.0\)
- canonical/zyxel nwa90ax-pro firmware
- canonical/zyxel wac500h firmware
- version/zyxel wac500h firmware/6.50\(abvs.0\)
- canonical/zyxel wac500 firmware
- version/zyxel wac500h firmware/6.50\(abwa.0\)
- canonical/zyxel wac5302d-sv2
- version/zyxel wac5302d-sv2/6.25\(abvz.9\)
- canonical/zyxel wac5302d-sv2 firmware
- canonical/zyxel wac6103d-i
- version/zyxel wac6103d-i/6.28\(aaxh.0\)
- canonical/zyxel wac6103d-i firmware
- canonical/zyxel wac6303d-s
- version/zyxel wac6303d-s/6.25\(abgl.9\)
- canonical/zyxel wac6303d-s firmware
- canonical/zyxel wac6502d-s
- version/zyxel wac6502d-s/6.28\(aasd.0\)
- canonical/zyxel wac6502d-e firmware
- version/zyxel wac6502d-s/6.28\(aase.0\)
- canonical/zyxel wac6502d-s firmware
- canonical/zyxel wac6503d-s firmware
- version/zyxel wac6503d-s firmware/6.28\(aasf.0\)
- canonical/zyxel wac6552d-s firmware
- version/zyxel wac6552d-s firmware/6.28\(abio.0\)
- canonical/zyxel wac6553d-e
- version/zyxel wac6553d-e/6.28\(aasg.0\)
- canonical/zyxel wax510d firmware
- version/zyxel wax510d firmware/6.50\(abtf.2\)
- canonical/zyxel wax610d
- version/zyxel wax610d/6.50\(abte.2\)
- canonical/zyxel wax610d firmware
- canonical/zyxel wax620d-6e
- version/zyxel wax620d-6e/6.50\(accn.2\)
- canonical/zyxel wax620d-6e firmware
- canonical/zyxel wax630s firmware
- version/zyxel wax630s firmware/6.50\(abzd.2\)
- canonical/zyxel wax640s-6e
- version/zyxel wax640s-6e/6.50\(accm.2\)
- canonical/zyxel wax640s-6e firmware
- canonical/zyxel wax650s firmware
- version/zyxel wax650s firmware/6.50\(abrm.2\)
- canonical/zyxel wax650s
- canonical/zyxel wax655e firmware
- version/zyxel wax655e firmware/6.50\(acdo.2\)