{"id": "CVE-2018-9129", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2018-08-15T18:29:01.230", "references": [{"url": "ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf", "source": "cve@mitre.org"}, {"url": "https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "ftp://ftp.zyxel.com/USG110/firmware/USG110_4.32%28AAPH.0%29C0_2.pdf", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://web-in-security.blogspot.com/2018/08/practical-bleichenbacher-attacks-on-ipsec-ike.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.zyxel.com/support/bleichenbacher_attack_vulnerability.shtml", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "ZyXEL ZyWALL/USG series devices have a Bleichenbacher vulnerability in their Internet Key Exchange (IKE) handshake implementation used for IPsec based VPN connections."}, {"lang": "es", "value": "Los dispositivos ZyXEL de la serie ZyWALL/USG tienen una vulnerabilidad de Bleichenbacher en su implementaci\u00f3n de handshake de intercambio de claves de Internet (IKE) utilizado para conexiones VPN basadas en IPsec."}], "lastModified": "2024-11-21T04:15:01.633", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:zywall_110_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA1AC1BA-ECA9-40ED-8A76-92ECD7365B68"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:zywall_110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "145E41D9-E376-4B8E-A34F-F2C7ECFD649D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:zywall_1100_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DFE70E63-C665-4B8E-A442-CF5BF0E8139A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:zywall_1100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BCE32A1C-A730-4893-BCB9-F753F8E65440"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:zywall_310_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76DC263D-E9B1-4652-BD7C-329365DDAF95"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:zywall_310:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B40C703E-C7C0-4B49-A336-83853D3E8C31"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:zywall_vpn_50_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4D31C06-4E89-4F73-95F1-3FF1E515AB96"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:zywall_vpn_50:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FD872CA4-385D-49A9-B1DF-7C4467BD49AA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:zywall_vpn_100_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A819B4B7-9095-4CFA-8A0F-F75809DD53DA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:zywall_vpn_100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1B81DDA-DDD5-4D9B-B631-815186E3839F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:zywall_vpn_300_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AEB4AB0-53D6-4DE6-89DC-4BC8EFBF2F2D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:zywall_vpn_300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "212C5E8E-774A-446E-B7C7-80C349160BC2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_20w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F92919D0-F6FE-4011-9B1A-9D04A035D629"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_20w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6CD5A4AB-0CC2-4CAF-AAFA-0F866174842F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_40_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B607CD6-BCD6-4004-8627-A4B3BDDF7677"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_40:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D84DDB81-DE66-4427-8833-633B45A45A14"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_40w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52F30BE8-6A60-4C43-8794-57B9D2A33438"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_40w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F11F36C-60DB-4D81-A320-53EEE43758C1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_60_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8315C473-40B7-4EF0-A7E5-8C4BC1A79429"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_60:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C65DB5E9-2FE3-4807-970E-A42FDF82B50E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_60w_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA2E485D-C8B1-48E9-9E67-4433D9B318E8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_60w:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "82864EF6-B63D-4947-A18C-AE0156CCA7FA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_110_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0567A656-4AFB-4457-A807-813ED71C37B3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C7E32879-01A2-49B1-A354-068CEB1CA3A5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_2200-vpn_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F34BD0D3-2682-48BA-9382-E24B6B299E57"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_2200-vpn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "32F7F370-C585-45FE-A7F7-40BFF13928CF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_310_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58F65D2A-8935-458A-9BD8-4D2EE1CEFCBE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_310:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "38B7995C-80E0-413B-9F2C-387EF3703927"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_1100_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0AEF3A7B-9CC6-4876-AA56-8B58C69F537F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_1100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EC4B9AC6-7C55-42BD-A1D8-F5D5A19AC59D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_1900_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7214720-5FED-4BFD-89B4-BD6154711747"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_1900:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "92CE6F04-403B-4A52-A3A5-DD0190CF15D9"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:zyxel:usg_20w-vpn_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B74D51D7-7555-49A5-BCAC-B5FDE74D4261"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:usg_20w-vpn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6BEA412F-3DA1-4E91-9C74-0666147DABCE"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}