CVE-2023-28771

⚠ KEVEPSS 94.3%

Zyxel Multiple Firewalls OS Command Injection Vulnerability

Added to CISA KEV: 5/31/2023

Description

Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected device.

Affected packages (0)

No package mapping in OSV.