CVE-2021-35033

Public Exploit

Description

A vulnerability in specific versions of Zyxel NBG6818, NBG7815, WSQ20, WSQ50, WSQ60, and WSR30 firmware with pre-configured password management could allow an attacker to obtain root access of the device, if the local attacker dismantles the device and uses a USB-to-UART cable to connect the device, or if the remote assistance feature had been enabled by an authenticated user.

References

Link	Tags
https://www.zyxel.com/support/Zyxel_security_advisory_for_pre-configured_password_management_vulnerability_of_home_routers_and_WiFi_systems.shtml	vendor advisory
https://www.tenable.com/security/research/tra-2022-06	third party advisory exploit

Frequently Asked Questions

What is the severity of CVE-2021-35033?: CVE-2021-35033 has been scored as a high severity vulnerability.
How to fix CVE-2021-35033?: To fix CVE-2021-35033, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-35033 being actively exploited in the wild?: It is possible that CVE-2021-35033 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-35033?: CVE-2021-35033 affects Zyxel NBG6818 series firmware, Zyxel NBG7815 series firmware, Zyxel WSQ20 series firmware, Zyxel WSQ50 series firmware, Zyxel WSQ60 series firmware, Zyxel WSR30 series firmware.

Description

Categories

CWE-260 – Password in Configuration File

CWE-287 – Improper Authentication

References

Frequently Asked Questions