Vulnerability Details CVE-2022-0734
A cross-site scripting vulnerability was identified in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.35 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.35 through 5.20, and VPN series firmware versions 4.35 through 5.20, that could allow an attacker to obtain some information stored in the user's browser, such as cookies or session tokens, via a malicious script.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.17
EPSS Ranking 94.6%
CVSS Severity
CVSS v3 Score 5.8
CVSS v2 Score 4.3
References
Products affected by CVE-2022-0734
-
cpe:2.3:h:zyxel:atp100:-
-
cpe:2.3:h:zyxel:atp100w:-
-
cpe:2.3:h:zyxel:atp200:-
-
cpe:2.3:h:zyxel:atp500:-
-
cpe:2.3:h:zyxel:atp700:-
-
cpe:2.3:h:zyxel:atp800:-
-
cpe:2.3:h:zyxel:usg200:-
-
cpe:2.3:h:zyxel:usg20:-
-
cpe:2.3:h:zyxel:usg210:-
-
cpe:2.3:h:zyxel:usg2200:-
-
cpe:2.3:h:zyxel:usg300:-
-
cpe:2.3:h:zyxel:usg310:-
-
cpe:2.3:h:zyxel:usg_1100:-
-
cpe:2.3:h:zyxel:usg_110:-
-
cpe:2.3:h:zyxel:usg_1900:-
-
cpe:2.3:h:zyxel:usg_20w-vpn:-
-
cpe:2.3:h:zyxel:usg_20w:-
-
cpe:2.3:h:zyxel:usg_2200-vpn:-
-
cpe:2.3:h:zyxel:usg_310:-
-
cpe:2.3:h:zyxel:usg_40:-
-
cpe:2.3:h:zyxel:usg_40w:-
-
cpe:2.3:h:zyxel:usg_60:-
-
cpe:2.3:h:zyxel:usg_60w:-
-
cpe:2.3:h:zyxel:usg_flex_100:-
-
cpe:2.3:h:zyxel:usg_flex_100w:-
-
cpe:2.3:h:zyxel:usg_flex_200:-
-
cpe:2.3:h:zyxel:usg_flex_500:-
-
cpe:2.3:h:zyxel:usg_flex_700:-
-
cpe:2.3:h:zyxel:vpn1000:-
-
cpe:2.3:h:zyxel:vpn100:-
-
cpe:2.3:h:zyxel:vpn300:-
-
cpe:2.3:h:zyxel:vpn50:-
-
cpe:2.3:o:zyxel:atp100_firmware:4.35
-
cpe:2.3:o:zyxel:atp100_firmware:4.35(abps.2)c0
-
cpe:2.3:o:zyxel:atp100_firmware:4.35(abps.3)c0
-
cpe:2.3:o:zyxel:atp100_firmware:4.60
-
cpe:2.3:o:zyxel:atp100_firmware:5.10
-
cpe:2.3:o:zyxel:atp100_firmware:5.20
-
cpe:2.3:o:zyxel:atp100w_firmware:4.60
-
cpe:2.3:o:zyxel:atp100w_firmware:5.10
-
cpe:2.3:o:zyxel:atp100w_firmware:5.20
-
cpe:2.3:o:zyxel:atp200_firmware:4.35
-
cpe:2.3:o:zyxel:atp200_firmware:4.35(abfw.3)c0
-
cpe:2.3:o:zyxel:atp200_firmware:4.60
-
cpe:2.3:o:zyxel:atp200_firmware:5.10
-
cpe:2.3:o:zyxel:atp200_firmware:5.20
-
cpe:2.3:o:zyxel:atp500_firmware:4.35
-
cpe:2.3:o:zyxel:atp500_firmware:4.35(abfu.3)c0
-
cpe:2.3:o:zyxel:atp500_firmware:4.60
-
cpe:2.3:o:zyxel:atp500_firmware:5.10
-
cpe:2.3:o:zyxel:atp500_firmware:5.20
-
cpe:2.3:o:zyxel:atp700_firmware:4.60
-
cpe:2.3:o:zyxel:atp700_firmware:5.10
-
cpe:2.3:o:zyxel:atp700_firmware:5.20
-
cpe:2.3:o:zyxel:atp800_firmware:4.35
-
cpe:2.3:o:zyxel:atp800_firmware:4.35(abiq.3)c0
-
cpe:2.3:o:zyxel:atp800_firmware:4.60
-
cpe:2.3:o:zyxel:atp800_firmware:5.10
-
cpe:2.3:o:zyxel:atp800_firmware:5.20
-
cpe:2.3:o:zyxel:usg200_firmware:4.35
-
cpe:2.3:o:zyxel:usg200_firmware:4.64
-
cpe:2.3:o:zyxel:usg20_firmware:4.35
-
cpe:2.3:o:zyxel:usg20_firmware:4.64
-
cpe:2.3:o:zyxel:usg210_firmware:4.35
-
cpe:2.3:o:zyxel:usg210_firmware:4.35(aapi.3)c0
-
cpe:2.3:o:zyxel:usg210_firmware:4.60
-
cpe:2.3:o:zyxel:usg210_firmware:4.64
-
cpe:2.3:o:zyxel:usg2200_firmware:4.35
-
cpe:2.3:o:zyxel:usg2200_firmware:4.35(abae.3)c0
-
cpe:2.3:o:zyxel:usg2200_firmware:4.60
-
cpe:2.3:o:zyxel:usg300_firmware:4.35
-
cpe:2.3:o:zyxel:usg300_firmware:4.64
-
cpe:2.3:o:zyxel:usg310_firmware:4.35
-
cpe:2.3:o:zyxel:usg310_firmware:4.35(aapj.3)c0
-
cpe:2.3:o:zyxel:usg310_firmware:4.60
-
cpe:2.3:o:zyxel:usg310_firmware:4.64
-
cpe:2.3:o:zyxel:usg_1100_firmware:*
-
cpe:2.3:o:zyxel:usg_110_firmware:*
-
cpe:2.3:o:zyxel:usg_1900_firmware:*
-
cpe:2.3:o:zyxel:usg_20w-vpn_firmware:*
-
cpe:2.3:o:zyxel:usg_20w_firmware:*
-
cpe:2.3:o:zyxel:usg_2200-vpn_firmware:*
-
cpe:2.3:o:zyxel:usg_310_firmware:*
-
cpe:2.3:o:zyxel:usg_40_firmware:*
-
cpe:2.3:o:zyxel:usg_40w_firmware:*
-
cpe:2.3:o:zyxel:usg_60_firmware:*
-
cpe:2.3:o:zyxel:usg_60w_firmware:*
-
cpe:2.3:o:zyxel:usg_flex_100_firmware:4.50
-
cpe:2.3:o:zyxel:usg_flex_100_firmware:4.60
-
cpe:2.3:o:zyxel:usg_flex_100_firmware:5.00
-
cpe:2.3:o:zyxel:usg_flex_100_firmware:5.01
-
cpe:2.3:o:zyxel:usg_flex_100_firmware:5.10
-
cpe:2.3:o:zyxel:usg_flex_100_firmware:5.20
-
cpe:2.3:o:zyxel:usg_flex_100w_firmware:4.50
-
cpe:2.3:o:zyxel:usg_flex_100w_firmware:4.60
-
cpe:2.3:o:zyxel:usg_flex_100w_firmware:5.00
-
cpe:2.3:o:zyxel:usg_flex_100w_firmware:5.01
-
cpe:2.3:o:zyxel:usg_flex_100w_firmware:5.10
-
cpe:2.3:o:zyxel:usg_flex_200_firmware:4.50
-
cpe:2.3:o:zyxel:usg_flex_200_firmware:4.60
-
cpe:2.3:o:zyxel:usg_flex_200_firmware:5.00
-
cpe:2.3:o:zyxel:usg_flex_200_firmware:5.01
-
cpe:2.3:o:zyxel:usg_flex_200_firmware:5.20
-
cpe:2.3:o:zyxel:usg_flex_500_firmware:4.50
-
cpe:2.3:o:zyxel:usg_flex_500_firmware:4.60
-
cpe:2.3:o:zyxel:usg_flex_500_firmware:5.00
-
cpe:2.3:o:zyxel:usg_flex_500_firmware:5.01
-
cpe:2.3:o:zyxel:usg_flex_500_firmware:5.10
-
cpe:2.3:o:zyxel:usg_flex_500_firmware:5.20
-
cpe:2.3:o:zyxel:usg_flex_700_firmware:4.50
-
cpe:2.3:o:zyxel:usg_flex_700_firmware:4.60
-
cpe:2.3:o:zyxel:usg_flex_700_firmware:5.00
-
cpe:2.3:o:zyxel:usg_flex_700_firmware:5.10
-
cpe:2.3:o:zyxel:usg_flex_700_firmware:5.20
-
cpe:2.3:o:zyxel:vpn1000_firmware:4.35
-
cpe:2.3:o:zyxel:vpn1000_firmware:4.35(abip.3)c0
-
cpe:2.3:o:zyxel:vpn1000_firmware:4.60
-
cpe:2.3:o:zyxel:vpn1000_firmware:5.20
-
cpe:2.3:o:zyxel:vpn100_firmware:4.35
-
cpe:2.3:o:zyxel:vpn100_firmware:4.35(abfv.3)c0
-
cpe:2.3:o:zyxel:vpn100_firmware:4.60
-
cpe:2.3:o:zyxel:vpn100_firmware:5.20
-
cpe:2.3:o:zyxel:vpn300_firmware:4.35
-
cpe:2.3:o:zyxel:vpn300_firmware:4.35(abfc.3)c0
-
cpe:2.3:o:zyxel:vpn300_firmware:4.60
-
cpe:2.3:o:zyxel:vpn300_firmware:5.20
-
cpe:2.3:o:zyxel:vpn50_firmware:4.35
-
cpe:2.3:o:zyxel:vpn50_firmware:4.35(abhl.3)c0
-
cpe:2.3:o:zyxel:vpn50_firmware:4.60
-
cpe:2.3:o:zyxel:vpn50_firmware:5.20