Zyxel Product Security Update Advisory (CVE-2024-11667)

Dec 05 2024

Overview

An update has been released to address vulnerabilities in Zyxel Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-11667

Zyxel ATP Fireware versions: 5.00 (inclusive) ~ 5.38 (inclusive)
Zyxel USG Flex Series Firmware versions: 5.00 (inclusive) ~ 5.38 (inclusive)
Zyxel USG Fle 50(W) Series Firmware versions: 5.10 (inclusive) ~ 5.38 (inclusive)
Zyxel USG20-VPN/USG20W-VPN Firmware versions: 5.10 (inclusive) ~ 5.38 (inclusive)

Resolved Vulnerabilities

Directory traversal vulnerability that could allow an attacker to download or upload files via a specially crafted URL(CVE-2024-11667)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-11667

Zyxel ZLD firewall Firmware version: 5.39 or later version

Referenced Sites

[1] CVE-2024-11667 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-11667

[2] Zyxel security advisory: protecting against recent firewall threats

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-protecting-against-recent-firewall-threats-11-27-2024

Zyxel Product Security Update Advisory (CVE-2024-11667)

IBM Product Security Update Advisory

Google Chrome Browser (131.0.6778.108/.109) Security Update Advisory

Tags:

IBM Product Security Update Advisory

Google Chrome Browser (131.0.6778.108/.109) Security Update Advisory