First published: Mon Apr 24 2023(Updated: )
The cross-site scripting (XSS) vulnerability in Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through 5.35, and VPN series firmware versions 4.30 through 5.35, which could allow an authenticated attacker with administrator privileges to store malicious scripts in a vulnerable device. A successful XSS attack could then result in the stored malicious scripts being executed when the user visits the Logs page of the GUI on the device.
Credit: security@zyxel.com.tw security@zyxel.com.tw
Affected Software | Affected Version | How to fix |
---|---|---|
Zyxel Atp200 Firmware | >=4.32<5.36 | |
Zyxel ATP200 | ||
Zyxel Multiple Network-Attached Storage (NAS) Devices | >=4.32<5.36 | |
Zyxel Multiple Network-Attached Storage (NAS) Devices | ||
Zyxel Atp700 Firmware | >=4.32<5.36 | |
Zyxel Atp700 | ||
Zyxel Atp500 Firmware | >=4.32<5.36 | |
Zyxel Atp500 | ||
Zyxel Atp100w Firmware | >=4.32<5.36 | |
Zyxel Atp100w | ||
Zyxel Atp800 Firmware | >=4.32<5.36 | |
Zyxel Atp800 | ||
Zyxel Usg Flex 100 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 100 | ||
Zyxel Usg Flex 50 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 50 | ||
Zyxel Usg Flex 200 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 200 | ||
Zyxel Usg Flex 500 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 500 | ||
Zyxel Usg Flex 700 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 700 | ||
Zyxel Usg Flex 100w Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 100w | ||
Zyxel Usg 20w-vpn Firmware | >=4.16<5.36 | |
Zyxel Usg 20w-vpn | ||
Zyxel Usg Flex 50w Firmware | >=4.16<5.36 | |
Zyxel Usg Flex 50w | ||
Zyxel Usg20-vpn Firmware | >=4.30<5.36 | |
Zyxel Usg20-vpn | ||
Zyxel Vpn100 Firmware | >=4.30<5.36 | |
Zyxel Vpn100 | ||
Zyxel Multiple Network-Attached Storage (NAS) Devices | >=4.30<5.36 | |
Zyxel Multiple Network-Attached Storage (NAS) Devices | ||
Zyxel Vpn300 Firmware | >=4.30<5.36 | |
Zyxel Vpn300 | ||
Zyxel Vpn50 Firmware | >=4.30<5.36 | |
Zyxel Vpn50 | ||
All of | ||
Zyxel Atp200 Firmware | >=4.32<5.36 | |
Zyxel ATP200 | ||
All of | ||
Zyxel Multiple Network-Attached Storage (NAS) Devices | >=4.32<5.36 | |
Zyxel Multiple Network-Attached Storage (NAS) Devices | ||
All of | ||
Zyxel Atp700 Firmware | >=4.32<5.36 | |
Zyxel Atp700 | ||
All of | ||
Zyxel Atp500 Firmware | >=4.32<5.36 | |
Zyxel Atp500 | ||
All of | ||
Zyxel Atp100w Firmware | >=4.32<5.36 | |
Zyxel Atp100w | ||
All of | ||
Zyxel Atp800 Firmware | >=4.32<5.36 | |
Zyxel Atp800 | ||
All of | ||
Zyxel Usg Flex 100 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 100 | ||
All of | ||
Zyxel Usg Flex 50 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 50 | ||
All of | ||
Zyxel Usg Flex 200 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 200 | ||
All of | ||
Zyxel Usg Flex 500 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 500 | ||
All of | ||
Zyxel Usg Flex 700 Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 700 | ||
All of | ||
Zyxel Usg Flex 100w Firmware | >=4.50<5.36 | |
Zyxel Usg Flex 100w | ||
All of | ||
Zyxel Usg 20w-vpn Firmware | >=4.16<5.36 | |
Zyxel Usg 20w-vpn | ||
All of | ||
Zyxel Usg Flex 50w Firmware | >=4.16<5.36 | |
Zyxel Usg Flex 50w | ||
All of | ||
Zyxel Usg20-vpn Firmware | >=4.30<5.36 | |
Zyxel Usg20-vpn | ||
All of | ||
Zyxel Vpn100 Firmware | >=4.30<5.36 | |
Zyxel Vpn100 | ||
All of | ||
Zyxel Multiple Network-Attached Storage (NAS) Devices | >=4.30<5.36 | |
Zyxel Multiple Network-Attached Storage (NAS) Devices | ||
All of | ||
Zyxel Vpn300 Firmware | >=4.30<5.36 | |
Zyxel Vpn300 | ||
All of | ||
Zyxel Vpn50 Firmware | >=4.30<5.36 | |
Zyxel Vpn50 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-27990 is medium with a severity value of 4.8.
CVE-2023-27990 affects Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through 5.35, and VPN series firmware versions 4.30 through 5.35.
The Common Weakness Enumeration (CWE) of CVE-2023-27990 is CWE-79.
To fix CVE-2023-27990, it is recommended to update to a firmware version that is not vulnerable. Refer to the vendor's security advisory for more information.
You can find more information about CVE-2023-27990 in the vendor's security advisory at https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-xss-vulnerability-and-post-authentication-command-injection-vulnerability-in-firewalls