RCE in Zyxel Atp Series Firmware
CVE-2023-6398
A post-authentication command injection vulnerability in the file upload binary in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1, USG FLEX series firmware versions from 4.50 through 5.37 Patch 1, USG FLEX 50(W) series f…
Vulnerability class: Command Injection (OS Command Injection)
EPSS: 0.007 (73.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Zyxel Atp Series Firmware — versions version 4.32 through 5.37 Patch 1
- Zyxel Nwa50ax Firmware — versions < 6.29(ABYW.4)
- Zyxel Usg20(w)-vpn Series Firmware — versions version 4.16 through 5.37 Patch 1
- Zyxel Usg Flex 50(w) Series Firmware — versions version 4.16 through 5.37 Patch 1
- Zyxel Usg Flex H Series Firmware — versions version 1.10 through 1.10 Patch 1
- Zyxel Usg Flex Series Firmware — versions version 4.50 through 5.37 Patch 1
- Zyxel Wac500 Firmware — versions < 6.70(ABVS.1)
- Zyxel Wax300h Firmware — versions < 6.70(ACHF.1)
- Zyxel Wbe660s Firmware — versions < 6.70(ACGG.1)
Weakness classification (CWE)
Public proof-of-concept exploits
References
Frequently asked questions
- What is CVE-2023-6398?
- CVE-2023-6398 is a high-severity vulnerability in Zyxel Atp Series Firmware, classified under OS Command Injection. CVSS score: 7.2/10. Published 2024-02-20.
- How severe is CVE-2023-6398?
- High severity. CVSS v3 base score is 7.2 out of 10.
- Is CVE-2023-6398 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.