Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote malicious user to generate guest accounts by directly accessing the account generator. This can lead to unauthorised network access or Denial of Service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zyxel uag2100_firmware |
||
zyxel uag4100_firmware |
||
zyxel uag5100_firmware |
||
zyxel usg110_firmware |
||
zyxel usg210_firmware |
||
zyxel usg310_firmware |
||
zyxel usg1100_firmware |
||
zyxel usg1900_firmware |
||
zyxel usg2200-vpn_firmware |
||
zyxel zywall_vpn100_firmware |
||
zyxel zywall_vpn300_firmware |
||
zyxel zywall_110_firmware |
||
zyxel zywall_310_firmware |
||
zyxel zywall_1100_firmware |