CVE-2023-28771—Zyxel Multiple Firewalls OS Command Injection Vulnerability
PUBLISHEDvulnerability record
2023-05-31 · last modified June 21, 2025
Metadata
漏洞名称
Zyxel Multiple Firewalls OS Command Injection Vulnerability
描述
Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected device.
已知用于勒索软件活动吗?
采集行动
Apply updates per vendor instructions.