CVE-2018-9129
MEDIUMZyXEL ZyWALL/USG Firmware - Bleichenbacher Attack via IKE Handshake
Title source: llmDescription
ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_misc
https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html
Various Sources x_refsource_confirm
ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf
Patch, Vendor Advisory x_refsource_confirm
https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml
Scores
CVSS v3
5.9
EPSS
0.0027
EPSS Percentile
50.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
Status
published
Products (17)
zyxel/usg_1100_firmware
zyxel/usg_110_firmware
zyxel/usg_1900_firmware
zyxel/usg_20w-vpn_firmware
zyxel/usg_20w_firmware
zyxel/usg_2200-vpn_firmware
zyxel/usg_310_firmware
zyxel/usg_40_firmware
zyxel/usg_40w_firmware
zyxel/usg_60_firmware
... and 7 more
Published
Aug 15, 2018
Tracked Since
Feb 18, 2026