CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-0556

A local privilege escalation vulnerability caused by incorrect permission assignment in some directories of the Zyxel AP Configurator (ZAC) version 1.1.4, which could allow an attacker to execute arbitrary code as a local administrator.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.1%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.2

References

https://www.zyxel.com/support/Zyxel-security-advisory-for-local-privilege-escalation-vulnerability-of-AP-Configurator.shtml
https://www.zyxel.com/support/Zyxel-security-advisory-for-local-privilege-escalation-vulnerability-of-AP-Configurator.shtml

Products affected by CVE-2022-0556

Zyxel » Zyxel Ap Configurator » Version: 1.1.4

cpe:2.3:a:zyxel:zyxel_ap_configurator:1.1.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-0556

Products

Pricing

Contact Us