CVE-2018-9129

ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zyxel:zywall_110_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zywall_110:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:zyxel:zywall_1100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zywall_1100:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:zyxel:zywall_310_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zywall_310:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:zyxel:zywall_vpn_50_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zywall_vpn_50:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:zyxel:zywall_vpn_100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zywall_vpn_100:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:zyxel:zywall_vpn_300_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zywall_vpn_300:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:zyxel:usg_20w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_20w:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:zyxel:usg_40_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_40:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:zyxel:usg_40w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_40w:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:zyxel:usg_60_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_60:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:zyxel:usg_60w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_60w:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:zyxel:usg_110_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_110:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:zyxel:usg_2200-vpn_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_2200-vpn:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:zyxel:usg_310_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_310:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:zyxel:usg_1100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_1100:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:zyxel:usg_1900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_1900:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:zyxel:usg_20w-vpn_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:usg_20w-vpn:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:15

Type Values Removed Values Added
References () ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf - () ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf -
References () https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html - Third Party Advisory () https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html - Third Party Advisory
References () https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml - Patch, Vendor Advisory () https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml - Patch, Vendor Advisory

07 Nov 2023, 03:01

Type Values Removed Values Added
References
  • {'url': 'ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32(AAPH.0)C0_2.pdf', 'name': 'ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32(AAPH.0)C0_2.pdf', 'tags': ['Release Notes', 'Vendor Advisory'], 'refsource': 'CONFIRM'}
  • () ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf -

Information

Published : 2018-08-15 18:29

Updated : 2024-11-21 04:15


NVD link : CVE-2018-9129

Mitre link : CVE-2018-9129

CVE.ORG link : CVE-2018-9129


JSON object : View

Products Affected

zyxel

  • usg_310_firmware
  • usg_20w-vpn_firmware
  • zywall_310_firmware
  • zywall_vpn_100
  • usg_60w_firmware
  • zywall_310
  • usg_2200-vpn_firmware
  • usg_40w_firmware
  • usg_40w
  • zywall_vpn_100_firmware
  • usg_20w
  • usg_40_firmware
  • usg_1900_firmware
  • zywall_110
  • usg_310
  • usg_1100_firmware
  • usg_110
  • usg_60w
  • zywall_1100
  • usg_110_firmware
  • usg_20w-vpn
  • zywall_vpn_50_firmware
  • zywall_1100_firmware
  • usg_20w_firmware
  • usg_2200-vpn
  • usg_60_firmware
  • usg_1900
  • usg_60
  • zywall_vpn_300
  • usg_1100
  • zywall_vpn_50
  • usg_40
  • zywall_110_firmware
  • zywall_vpn_300_firmware