CVE-2023-34141: Command Injection
First published: Mon Jul 17 2023(Updated: )
A command injection vulnerability in the access point (AP) management feature of the Zyxel ATP series firmware versions 5.00 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5.00 through 5.36 Patch 2, USG20(W)-VPN series firmware versions 5.00 through 5.36 Patch 2, VPN series firmware versions 5.00 through 5.36 Patch 2, NXC2500 firmware versions 6.10(AAIG.0) through 6.10(AAIG.3), and NXC5500 firmware versions 6.10(AAOS.0) through 6.10(AAOS.4), could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affected device if the attacker could trick an authorized administrator to add their IP address to the managed AP list in advance.
Credit: security@zyxel.com.tw security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel Usg 20w-vpn Firmware | >=5.00<5.37 | |
| Zyxel Usg 20w-vpn | ||
| Zyxel Usg 2200-vpn Firmware | >=5.00<5.37 | |
| Zyxel Usg 2200-vpn | ||
| Zyxel Usg Flex 100 Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 100 | ||
| Zyxel Usg Flex 100w Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 100w | ||
| Zyxel Usg Flex 200 Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 200 | ||
| Zyxel Usg Flex 50 Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 50 | ||
| Zyxel Usg Flex 500 Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 500 | ||
| Zyxel Usg Flex 50w Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 50w | ||
| Zyxel Usg Flex 700 Firmware | >=5.00<5.37 | |
| Zyxel Usg Flex 700 | ||
| Zyxel Zywall Atp100 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Atp100 | ||
| Zyxel Zywall Atp100w Firmware | >=5.00<5.37 | |
| Zyxel Zywall Atp100w | ||
| Zyxel Zywall Atp200 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Atp200 | ||
| Zyxel Zywall Atp500 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Atp500 | ||
| Zyxel Zywall Atp700 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Atp700 | ||
| Zyxel Zywall Atp800 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Atp800 | ||
| Zyxel Zywall Vpn100 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn100 | ||
| Zyxel Zywall Vpn2s Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn2s | ||
| Zyxel Zywall Vpn300 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn300 | ||
| Zyxel Zywall Vpn50 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn50 | ||
| Zyxel Zywall Vpn 100 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn 100 | ||
| Zyxel Zywall Vpn 300 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn 300 | ||
| Zyxel Zywall Vpn 50 Firmware | >=5.00<5.37 | |
| Zyxel Zywall Vpn 50 | ||
| Zyxel Nxc2500 Firmware | >=6.10\(aaig.0\)<=6.10\(aaig.3\) | |
| Zyxel Nxc2500 | ||
| Zyxel Nxc5500 Firmware | >=6.10\(aaos.0\)<=6.10\(aaos.4\) | |
| Zyxel Nxc5500 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-34141?
The severity of CVE-2023-34141 is high.
Which software versions are affected by CVE-2023-34141?
The Zyxel ATP series firmware versions 5.00 through 5.36 Patch 2, USG FLEX series firmware versions 5.00 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 5.00 through 5.36 Patch 2, and USG20(W)-VPN series firmware versions 5.00 through 5.36 Patch 2 are affected by CVE-2023-34141.
How can I fix CVE-2023-34141?
Apply the available patch or firmware update provided by Zyxel to fix CVE-2023-34141.
What is the Common Weakness Enumeration (CWE) ID for CVE-2023-34141?
The CWE ID for CVE-2023-34141 is CWE-77 and CWE-78.
Where can I find more information about CVE-2023-34141?
You can find more information about CVE-2023-34141 [here](https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-wlan-controllers).
- collector/nvd-latest
- collector/nvd-api
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zyxel
- canonical/zyxel usg 20w-vpn firmware
- version/zyxel usg 20w-vpn firmware/5.00
- canonical/zyxel usg 20w-vpn
- canonical/zyxel usg 2200-vpn firmware
- version/zyxel usg 2200-vpn firmware/5.00
- canonical/zyxel usg 2200-vpn
- canonical/zyxel usg flex 100 firmware
- version/zyxel usg flex 100 firmware/5.00
- canonical/zyxel usg flex 100
- canonical/zyxel usg flex 100w firmware
- version/zyxel usg flex 100w firmware/5.00
- canonical/zyxel usg flex 100w
- canonical/zyxel usg flex 200 firmware
- version/zyxel usg flex 200 firmware/5.00
- canonical/zyxel usg flex 200
- canonical/zyxel usg flex 50 firmware
- version/zyxel usg flex 50 firmware/5.00
- canonical/zyxel usg flex 50
- canonical/zyxel usg flex 500 firmware
- version/zyxel usg flex 500 firmware/5.00
- canonical/zyxel usg flex 500
- canonical/zyxel usg flex 50w firmware
- version/zyxel usg flex 50w firmware/5.00
- canonical/zyxel usg flex 50w
- canonical/zyxel usg flex 700 firmware
- version/zyxel usg flex 700 firmware/5.00
- canonical/zyxel usg flex 700
- canonical/zyxel zywall atp100 firmware
- version/zyxel zywall atp100 firmware/5.00
- canonical/zyxel zywall atp100
- canonical/zyxel zywall atp100w firmware
- version/zyxel zywall atp100w firmware/5.00
- canonical/zyxel zywall atp100w
- canonical/zyxel zywall atp200 firmware
- version/zyxel zywall atp200 firmware/5.00
- canonical/zyxel zywall atp200
- canonical/zyxel zywall atp500 firmware
- version/zyxel zywall atp500 firmware/5.00
- canonical/zyxel zywall atp500
- canonical/zyxel zywall atp700 firmware
- version/zyxel zywall atp700 firmware/5.00
- canonical/zyxel zywall atp700
- canonical/zyxel zywall atp800 firmware
- version/zyxel zywall atp800 firmware/5.00
- canonical/zyxel zywall atp800
- canonical/zyxel zywall vpn100 firmware
- version/zyxel zywall vpn100 firmware/5.00
- canonical/zyxel zywall vpn100
- canonical/zyxel zywall vpn2s firmware
- version/zyxel zywall vpn2s firmware/5.00
- canonical/zyxel zywall vpn2s
- canonical/zyxel zywall vpn300 firmware
- version/zyxel zywall vpn300 firmware/5.00
- canonical/zyxel zywall vpn300
- canonical/zyxel zywall vpn50 firmware
- version/zyxel zywall vpn50 firmware/5.00
- canonical/zyxel zywall vpn50
- canonical/zyxel zywall vpn 100 firmware
- version/zyxel zywall vpn 100 firmware/5.00
- canonical/zyxel zywall vpn 100
- canonical/zyxel zywall vpn 300 firmware
- version/zyxel zywall vpn 300 firmware/5.00
- canonical/zyxel zywall vpn 300
- canonical/zyxel zywall vpn 50 firmware
- version/zyxel zywall vpn 50 firmware/5.00
- canonical/zyxel zywall vpn 50
- canonical/zyxel nxc2500 firmware
- version/zyxel nxc2500 firmware/6.10\(aaig.0\)
- version/zyxel nxc2500 firmware/6.10\(aaig.3\)
- canonical/zyxel nxc2500
- canonical/zyxel nxc5500 firmware
- version/zyxel nxc5500 firmware/6.10\(aaos.0\)
- version/zyxel nxc5500 firmware/6.10\(aaos.4\)
- canonical/zyxel nxc5500