Vulnerability Details CVE-2018-9129
ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 57.1%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 4.3
References
- ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf
- https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html
- https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml
- ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf
- https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html
- https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml
Products affected by CVE-2018-9129
-
cpe:2.3:h:zyxel:usg_1100:-
-
cpe:2.3:h:zyxel:usg_110:-
-
cpe:2.3:h:zyxel:usg_1900:-
-
cpe:2.3:h:zyxel:usg_20w-vpn:-
-
cpe:2.3:h:zyxel:usg_20w:-
-
cpe:2.3:h:zyxel:usg_2200-vpn:-
-
cpe:2.3:h:zyxel:usg_310:-
-
cpe:2.3:h:zyxel:usg_40:-
-
cpe:2.3:h:zyxel:usg_40w:-
-
cpe:2.3:h:zyxel:usg_60:-
-
cpe:2.3:h:zyxel:usg_60w:-
-
cpe:2.3:h:zyxel:zywall_1100:-
-
cpe:2.3:h:zyxel:zywall_110:-
-
cpe:2.3:h:zyxel:zywall_310:-
-
cpe:2.3:h:zyxel:zywall_vpn_100:-
-
cpe:2.3:h:zyxel:zywall_vpn_300:-
-
cpe:2.3:h:zyxel:zywall_vpn_50:-
-
cpe:2.3:o:zyxel:usg_1100_firmware:-
-
cpe:2.3:o:zyxel:usg_110_firmware:-
-
cpe:2.3:o:zyxel:usg_1900_firmware:-
-
cpe:2.3:o:zyxel:usg_20w-vpn_firmware:-
-
cpe:2.3:o:zyxel:usg_20w_firmware:-
-
cpe:2.3:o:zyxel:usg_2200-vpn_firmware:-
-
cpe:2.3:o:zyxel:usg_310_firmware:-
-
cpe:2.3:o:zyxel:usg_40_firmware:-
-
cpe:2.3:o:zyxel:usg_40w_firmware:-
-
cpe:2.3:o:zyxel:usg_60_firmware:-
-
cpe:2.3:o:zyxel:usg_60w_firmware:-
-
cpe:2.3:o:zyxel:zywall_1100_firmware:-
-
cpe:2.3:o:zyxel:zywall_110_firmware:-
-
cpe:2.3:o:zyxel:zywall_310_firmware:-
-
cpe:2.3:o:zyxel:zywall_vpn_100_firmware:-
-
cpe:2.3:o:zyxel:zywall_vpn_300_firmware:-
-
cpe:2.3:o:zyxel:zywall_vpn_50_firmware:-