CVE-2023-28771

CRITICAL KEV

Zyxel ZyWALL/USG <4.73 - RCE

Title source: llm

Description

Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35, which could allow an unauthenticated attacker to execute some OS commands remotely by sending crafted packets to an affected device.

Exploits (7)

nomisec WORKING POC 30 stars
by benjaminhays · poc
https://github.com/benjaminhays/CVE-2023-28771-PoC
nomisec STUB
by JinParkmida · poc
https://github.com/JinParkmida/cve-2023-28771-demo
inthewild WORKING POC
poc
https://github.com/fed-speak/cve-2023-28771-poc
inthewild WORKING POC
poc
https://github.com/benhays142/cve-2023-28771-poc
metasploit WORKING POC GREAT
by sf · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/zyxel_ike_decoder_rce_cve_2023_28771.rb

References (3)

Scores

CVSS v3 9.8
EPSS 0.9435
EPSS Percentile 100.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2023-05-31
VulnCheck KEV 2023-05-25
InTheWild.io 2023-05-31
ENISA EUVD EUVD-2023-32406
CWE
CWE-78
Status published
Products (21)
zyxel/atp100_firmware 4.60 - 5.36
zyxel/atp100w_firmware 4.60 - 5.35
zyxel/atp200_firmware 4.60 - 5.36
zyxel/atp500_firmware 4.60 - 5.36
zyxel/atp700_firmware 4.60 - 5.36
zyxel/atp800_firmware 4.60 - 5.36
zyxel/usg_flex_100_firmware 4.60 - 5.36
zyxel/usg_flex_100w_firmware 4.60 - 5.36
zyxel/usg_flex_200_firmware 4.60 - 5.36
zyxel/usg_flex_500_firmware 4.60 - 5.36
... and 11 more
Published Apr 25, 2023
KEV Added May 31, 2023
Tracked Since Feb 18, 2026