CVE-2024-11667

Published Nov 27, 2024

Last updated 21 days ago

Overview

Description
A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series firmware versions V5.00 through V5.38, USG FLEX 50(W) series firmware versions V5.10 through V5.38, and USG20(W)-VPN series firmware versions V5.10 through V5.38 could allow an attacker to download or upload files via a crafted URL.
Source
security@zyxel.com.tw
NVD status
Analyzed

Risk scores

CVSS 3.1

Type
Primary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Known exploits

Data from CISA

Vulnerability name
Zyxel Multiple Firewalls Path Traversal Vulnerability
Exploit added on
Dec 3, 2024
Exploit action due
Dec 24, 2024
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weaknesses

security@zyxel.com.tw
CWE-22

Social media

Hype score
Not currently trending
  1. 5/13 🗂️ Zyxel's Path Traversal Danger CVE-2024-11667 - Attackers can mess with your files. Update your firewalls before it's too late! #NetworkSecurity #ZyxelAlert

    @Eth1calHackrZ

    10 Dec 2024

    6 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 1/9 CISA warns of active exploitation of Zyxel firewall flaw, CVE-2024-11667! Protect your network from path traversal attacks now. 🔒 #ZyxelVulnerability #CyberSecurity

    @Eth1calHackrZ

    10 Dec 2024

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 2/9 @ZyxelNews firewalls (ATP, USG FLEX, USG20(W)-VPN) under attack! Update to firmware 5.39+ to block CVE-2024-11667 exploits. 📡 #FirewallSecurity #PatchNow

    @Eth1calHackrZ

    10 Dec 2024

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Top 5 Trending CVEs: 1 - CVE-2024-38144 2 - CVE-2024-41713 3 - CVE-2024-39343 4 - CVE-2024-11667 5 - CVE-2024-49019 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    9 Dec 2024

    17 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. Zyxel の脆弱性 CVE-2024-11667:Helldown ランサムウェア展開での悪用を検出 https://t.co/iz4KOPXBaY Zyxel ファイアウォールの脆弱性ですが、Helldown ランサムウェアによる悪用が確認されているようです。すでにパッチがリリースされていますので、ご利用のチームは確認してみてください。… https://t.co/8kQ4EaR4LN

    @iototsecnews

    9 Dec 2024

    104 Impressions

    1 Retweet

    0 Likes

    1 Bookmark

    0 Replies

    0 Quotes

  6. 🚨 Zyxel Firewall Vulnerability Alert! 🚨 🛡️ CVE-2024-11667 📍 Impact: Directory traversal flaw in Zyxel firewalls (Firmware V5.00-V5.38) ⚠️ Threat: Attackers can upload/download files via manipulated URLs, risking system integrity. 🔐 Mitigations: ✅ Update firmware to the… htt

    @GHak2learn27752

    6 Dec 2024

    390 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  7. CISA Warns of Exploitation of Flaws in ProjectSend, CyberPanel, and Zyxel: CVE-2024-51378 CVE-2023-45727 CVE-2024-11680 CVE-2024-11667 CVE-2024-45841 CVE-2024-47133 CVE-2024-52564 https://t.co/qerETOTK91

    @vault33org

    5 Dec 2024

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 【独自】Zyxel Firewallの脆弱性CVE-2024-11667が、サイバーセキュリティ・社会基盤安全保障庁(CISA)の既知の悪用された脆弱性(KEV)カタログ上ランサムウェアによる悪用確認済みに更新。なお、KEV掲載時点でドイツCERT Germanyからランサムウェアによる悪用の報告がされていた。 https://t.co/TC6YO19pag

    @__kokumoto

    4 Dec 2024

    619 Impressions

    0 Retweets

    0 Likes

    1 Bookmark

    1 Reply

    0 Quotes

  9. CVE-2024-11667 is getting exploited #inthewild. Find out more at https://t.co/3DJJRw40Uh CVE-2024-11680 is getting exploited #inthewild. Find out more at https://t.co/fRRrITY2ke CVE-2023-45727 is getting exploited #inthewild. Find out more at https://t.co/qiH2XzNI4L

    @inthewildio

    4 Dec 2024

    106 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. csirt_it: ‼️ Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2024-11667 – già sanata dal vendor – in alcuni firewall #Zyxel Rischio: 🟠 🔗 https://t.co/Gcp4fvUDmZ ⚠ Importante aggiornare i prodotti interessati https://t.co/jAUNocuMyU

    @Vulcanux_

    4 Dec 2024

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. ‼️ Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2024-11667 – già sanata dal vendor – in alcuni firewall #Zyxel Rischio: 🟠 🔗 https://t.co/KJVEqRYLgq ⚠ Importante aggiornare i prodotti interessati https://t.co/jgmeN78KH7

    @csirt_it

    4 Dec 2024

    378 Impressions

    2 Retweets

    6 Likes

    0 Bookmarks

    0 Replies

    1 Quote

  12. Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2024-11667 #Zyxel Multiple Firewalls Path Traversal Vulnerability https://t.co/bI2L4t74qq

    @ScyScan

    3 Dec 2024

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. CISA Adds Three Known Exploited Vulnerabilities to Catalog: CVE-2024-11667 - Zyxel Multiple Firewalls Path Traversal CVE-2024-11680 - ProjectSend Improper Authentication CVE-2023-45727 - North Grid Proself Improper Restriction of XML External Entity (XEE) Reference… https://t.co/

    @TMJIntel

    3 Dec 2024

    63 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 🚨 CVE Alert: Zyxel Directory Traversal Vulnerability Exploited In The Wild🚨 Vulnerability Details: CVE-2024-11667 (CVSS 7.5/10) Zyxel Directory Traversal Vulnerability Impact A Successful exploit may allows an attacker to download or upload files via a crafted URL. Affected…

    @CyberxtronTech

    3 Dec 2024

    64 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. برای فایروال Zyxel آسیب پذیری با کد شناسایی CVE-2024-11667 و از نوع Directory Traversal منتشر شده است. این آسیب پذیری در قسمت Web management مربوط به این فایروال وجود دارد. نسخه های بین 5.00 تا 5.38 این محصول دارای این آسیب پذیری هستند. https://t.co/Poz3aKY03t https://t.co/WruZWy

    @AmirHossein_sec

    2 Dec 2024

    27 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  16. A directory traversal flaw in Zyxel Firewalls is being actively exploited in the wild. CVE-2024-11667 is a directory traversal flaw in the web management interface of ZLD firewall firmware. Exploitation allows threat actors to send maliciously crafted URLs to bypass directory… h

    @cybercitizen7

    2 Dec 2024

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  17. CVE-2024-11667: Critical Vulnerability in Zyxel Firewalls Actively Exploited https://t.co/kyzwtLejP4

    @CrowdCyber_Com

    30 Nov 2024

    28 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  18. Zyxel Firewalls exploited using CVE-2024-11667 #ZyxelFirewalls #CVE-2024-11667 https://t.co/jjBRPBIItP

    @pravin_karthik

    29 Nov 2024

    25 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  19. 🚨 Vague d'attaques exploitant les vulnérabilités du pare-feu Zyxel. Les versions 5.00 à 5.38 sont affectées (CVE-2024-11667). Mettez à jour vos systèmes dès que possible ! #Cybersécurité, #Cyberattaques, #Zyxel, #PareFeu https://t.co/XlAdIamOf9 https://t.co/iY3QwjHVlk

    @bexxoch

    29 Nov 2024

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  20. CVE-2024-11667: Kritisk sårbarhet i Zyxel brannmurer utnyttes aktivt. Integer Overflow-sårbarhet i Windows-driver muliggjør Privilege Escalation, PoC publisert. CVE-2024-52951 XSS i Omada Identity. https://t.co/WklSosXveP

    @TelenorSOC

    29 Nov 2024

    79 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  21. CVE-2024-11667: Directory Traversal in Zyxel Firewalls, 7.3 rating❗️ Vuln in the web interface of some firewalls allows an attacker to download or upload files. Search at https://t.co/hv7QKSqxTR: 👉 Link: https://t.co/l3Umxq6cb0 #cybersecurity #vulnerability_map #zyxel https:/

    @Netlas_io

    29 Nov 2024

    354 Impressions

    2 Retweets

    10 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  22. CVE-2024-11667: Critical Vulnerability in Zyxel Firewalls Actively Exploited https://t.co/BmuPG1tM7v

    @Dinosn

    29 Nov 2024

    2534 Impressions

    10 Retweets

    19 Likes

    6 Bookmarks

    0 Replies

    1 Quote

  23. CVE-2024-11667: Critical Vulnerability in Zyxel Firewalls Actively Exploited Beware of the critical vulnerability CVE-2024-11667 in #Zyxel firewalls. Learn how attackers are exploiting it to deploy Helldown ransomware. https://t.co/14FZrgih2L

    @the_yellow_fall

    29 Nov 2024

    15 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  24. German CERT warns that Zyxel firewalls are being exploited via a critical vulnerability (CVE-2024-11667) to deploy Helldown ransomware, urging immediate firmware updates and enhanced security measures to mitigate risks. #CyberSecurity #Ransomware https://t.co/F1e4WctDQL

    @Cyber_O51NT

    29 Nov 2024

    650 Impressions

    2 Retweets

    5 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  25. CVE-2024-11667 A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series firmware versions V5.00… https://t.co/Y2Nck8ADqq

    @CVEnew

    27 Nov 2024

    495 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations