A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 up to and including 5.36 Patch 2 and VPN series firmware versions 4.20 up to and including 5.36 Patch 2, could allow an unauthenticated, LAN-based malicious user to execute some OS commands on an affected device.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zyxel usg 2200-vpn firmware |
||
zyxel usg flex 100 firmware |
||
zyxel usg flex 100w firmware |
||
zyxel usg flex 200 firmware |
||
zyxel usg flex 50 firmware |
||
zyxel usg flex 500 firmware |
||
zyxel usg flex 50w firmware |
||
zyxel usg flex 700 firmware |
||
zyxel zywall vpn100 firmware |
||
zyxel zywall vpn2s firmware |
||
zyxel zywall vpn300 firmware |
||
zyxel zywall vpn50 firmware |
||
zyxel zywall vpn 100 firmware |
||
zyxel zywall vpn 300 firmware |
||
zyxel zywall vpn 50 firmware |