A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 and VPN series firmware versions 4.20 through 5.36 Patch 2, could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affected device.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Zyxel
Published: 2023-07-17T17:36:32.909Z
Updated: 2023-07-18T01:16:42.677Z
Reserved: 2023-05-26T03:44:51.339Z
Link: CVE-2023-34139
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-17T18:15:09.607
Modified: 2023-07-26T21:30:22.970
Link: CVE-2023-34139
JSON object: View
Redhat Information
No data.
CWE