CVE-2023-5650

Summary

CVE-2023-5650 is a privilege management vulnerability affecting multiple Zyxel firmware versions for ATP, USG FLEX, USG FLEX 50(W), USG20(W)-VPN, and VPN series devices. An attacker with local access can exploit this issue to manipulate the registration page URL in the web GUI, potentially leading to unauthorized configuration changes or data access. This vulnerability could pose a significant risk to network security and should be addressed promptly by applying the relevant patches. Affected users are urged to update their devices to the latest firmware versions as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.