CVE-2021-35029
Summary
| CVE | CVE-2021-35029 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-07-02 11:15:00 UTC |
| Updated | 2021-07-08 18:20:00 UTC |
| Description | An authentication bypasss vulnerability in the web-based management interface of Zyxel USG/Zywall series firmware versions 4.35 through 4.64 and USG Flex, ATP, and VPN series firmware versions 4.35 through 5.01, which could allow a remote attacker to execute arbitrary commands on an affected device. |
Risk And Classification
Problem Types: CWE-287
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Zyxel | Usg100 | - | All | All | All |
| Hardware | Zyxel | Usg1000 | - | All | All | All |
| Operating System | Zyxel | Usg1000 Firmware | All | All | All | All |
| Operating System | Zyxel | Usg100 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg110 | - | All | All | All |
| Hardware | Zyxel | Usg1100 | - | All | All | All |
| Operating System | Zyxel | Usg1100 Firmware | All | All | All | All |
| Operating System | Zyxel | Usg110 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg1900 | - | All | All | All |
| Operating System | Zyxel | Usg1900 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg20 | - | All | All | All |
| Hardware | Zyxel | Usg20-vpn | - | All | All | All |
| Operating System | Zyxel | Usg20-vpn Firmware | All | All | All | All |
| Hardware | Zyxel | Usg200 | - | All | All | All |
| Hardware | Zyxel | Usg2000 | - | All | All | All |
| Operating System | Zyxel | Usg2000 Firmware | All | All | All | All |
| Operating System | Zyxel | Usg200 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg20w | - | All | All | All |
| Hardware | Zyxel | Usg20w-vpn | - | All | All | All |
| Operating System | Zyxel | Usg20w-vpn Firmware | All | All | All | All |
| Operating System | Zyxel | Usg20w Firmware | All | All | All | All |
| Operating System | Zyxel | Usg20 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg210 | - | All | All | All |
| Operating System | Zyxel | Usg210 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg2200-vpn | - | All | All | All |
| Operating System | Zyxel | Usg2200-vpn Firmware | All | All | All | All |
| Hardware | Zyxel | Usg300 | - | All | All | All |
| Operating System | Zyxel | Usg300 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg310 | - | All | All | All |
| Operating System | Zyxel | Usg310 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg40 | - | All | All | All |
| Hardware | Zyxel | Usg40w | - | All | All | All |
| Operating System | Zyxel | Usg40w Firmware | All | All | All | All |
| Operating System | Zyxel | Usg40 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg50 | - | All | All | All |
| Operating System | Zyxel | Usg50 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg60 | - | All | All | All |
| Hardware | Zyxel | Usg60w | - | All | All | All |
| Operating System | Zyxel | Usg60w Firmware | All | All | All | All |
| Operating System | Zyxel | Usg60 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg Flex 100 | - | All | All | All |
| Hardware | Zyxel | Usg Flex 100w | - | All | All | All |
| Operating System | Zyxel | Usg Flex 100w Firmware | All | All | All | All |
| Operating System | Zyxel | Usg Flex 100 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg Flex 200 | - | All | All | All |
| Operating System | Zyxel | Usg Flex 200 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg Flex 500 | - | All | All | All |
| Operating System | Zyxel | Usg Flex 500 Firmware | All | All | All | All |
| Hardware | Zyxel | Usg Flex 700 | - | All | All | All |
| Operating System | Zyxel | Usg Flex 700 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall 110 | - | All | All | All |
| Hardware | Zyxel | Zywall 1100 | - | All | All | All |
| Operating System | Zyxel | Zywall 1100 Firmware | All | All | All | All |
| Operating System | Zyxel | Zywall 110 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall 310 | - | All | All | All |
| Operating System | Zyxel | Zywall 310 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Atp100 | - | All | All | All |
| Hardware | Zyxel | Zywall Atp100w | - | All | All | All |
| Operating System | Zyxel | Zywall Atp100w Firmware | All | All | All | All |
| Operating System | Zyxel | Zywall Atp100 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Atp200 | - | All | All | All |
| Operating System | Zyxel | Zywall Atp200 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Atp500 | - | All | All | All |
| Operating System | Zyxel | Zywall Atp500 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Atp700 | - | All | All | All |
| Operating System | Zyxel | Zywall Atp700 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Atp800 | - | All | All | All |
| Operating System | Zyxel | Zywall Atp800 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Vpn100 | - | All | All | All |
| Operating System | Zyxel | Zywall Vpn100 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Vpn300 | - | All | All | All |
| Operating System | Zyxel | Zywall Vpn300 Firmware | All | All | All | All |
| Hardware | Zyxel | Zywall Vpn50 | - | All | All | All |
| Operating System | Zyxel | Zywall Vpn50 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 404 Error | Zyxel | MISC | www.zyxel.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.