Description
Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by insecure permissions which allows regular and other users to create new users with elevated privileges. This is done by changing "FirstIndex" field in JSON that is POST-ed during account creation. Similar may also be possible with account deletion.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_misc
https://www.zyxel.com/support/security_advisories.shtml
Exploit, Third Party Advisory x_refsource_misc
https://blog.somegeneric.ninja/Zyxel_VMG5153_B30B
Exploit, Third Party Advisory x_refsource_misc
https://blog.somegeneric.ninja/Zyxel_VMG5153_B30B_part2
Scores
CVSS v3
9.8
EPSS
0.0037
EPSS Percentile
58.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (1)
zyxel/vmg5313-b30b_firmware
< 5.13\(abcj.6\)b3_1127
Published
Sep 02, 2020
Tracked Since
Feb 18, 2026