CVE-2019-12581

A reflective Cross-site scripting (XSS) vulnerability in the free_time_failed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or HTML via the err_msg parameter.

Published: Jun 27, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-12581
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.1
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
zyxel / uag2100_firmware	-	4.18\(aaiz.1\)c0.x
zyxel / uag4100_firmware	-	4.18\(aatd.1\)c0.x
zyxel / uag5100_firmware	-	4.18\(aapn.1\)c0.x
zyxel / usg110_firmware	-	4.30.x
zyxel / usg210_firmware	-	4.30.x
zyxel / usg310_firmware	-	4.30.x
zyxel / usg1100_firmware	-	4.30.x
zyxel / usg1900_firmware	-	4.30.x
zyxel / usg2200-vpn_firmware	-	4.30.x

https://n-thumann.de/blog/zyxel-gateways-missing-access-control-in-account-generator-xss/
https://sec-consult.com/en/blog/advisories/reflected-cross-site-scripting-in-zxel-zywall/index.html
https://www.zyxel.com/support/vulnerabilities-related-to-the-Free-Time-feature.shtml
https://www.zyxel.com/us/en/

Vulnerability Database

289,784

CVE-2019-12581