CVE-2023-28771

Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35, which could allow an unauthenticated attacker to execute some OS commands remotely by sending crafted packets to an affected device.

Recent assessments:

cbeek-r7 at July 26, 2024 7:41pm UTC reported:

A July 2024 bulletin from multiple U.S. government agencies indicates that North Korean state-sponsored attackers have demonstrated interest in this vulnerability — not immediately clear whether it was exploited or just used in reconnaissance/target selection: <https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-207a&gt;

ccondon-r7 at May 19, 2023 6:44pm UTC reported:

A July 2024 bulletin from multiple U.S. government agencies indicates that North Korean state-sponsored attackers have demonstrated interest in this vulnerability — not immediately clear whether it was exploited or just used in reconnaissance/target selection: <https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-207a&gt;

Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 4