CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Jun 21, 2023

CVE-2023-28771

High

EPSS 94.3%CISA KEV

Zyxel/Multiple Firewalls

Description

Zyxel ATP, USG FLEX, VPN, and ZyWALL/USG firewalls allow for improper error message handling which could allow an unauthenticated attacker to execute OS commands remotely by sending crafted packets to an affected device.

EPSS — Exploit Probability

94.3%

Higher than 100.0% of all CVEs

Required Action

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-remote-command-injection-vulnerability-of-firewalls; https://nvd.nist.gov/vuln/detail/CVE-2023-28771

Risk Assessment

HIGH

In CISA KEV

High EPSS

Details

Severity: High
EPSS: 94.3%
CISA KEV: Yes
Ransomware: Unknown
Articles: 0

Timeline

Published

May 31, 2023

Added to KEV

May 31, 2023

Remediation Due

Jun 21, 2023

Affected Product

Zyxel

Multiple Firewalls

View all Zyxel CVEs

External Links

NVD (NIST)CVE Details MITRE CVE