{"id":708786,"date":"2023-04-28T16:30:19","date_gmt":"2023-04-28T18:30:19","guid":{"rendered":"https:\/\/teknomers.com\/fr\/peripheriques-de-pare-feu-zyxel-vulnerables-aux-attaques-dexecution-de-code-a-distance-patch-now\/"},"modified":"2023-04-28T16:30:22","modified_gmt":"2023-04-28T18:30:22","slug":"peripheriques-de-pare-feu-zyxel-vulnerables-aux-attaques-dexecution-de-code-a-distance-patch-now","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/peripheriques-de-pare-feu-zyxel-vulnerables-aux-attaques-dexecution-de-code-a-distance-patch-now\/","title":{"rendered":"P\u00e9riph\u00e9riques de pare-feu Zyxel vuln\u00e9rables aux attaques d&#8217;ex\u00e9cution de code \u00e0 distance &#8211; Patch Now"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">28 avril 2023<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">S\u00e9curit\u00e9 r\u00e9seau \/ Vuln\u00e9rabilit\u00e9<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><\/div>\n<p>Le fabricant d&#8217;\u00e9quipements de r\u00e9seautage Zyxel a publi\u00e9 des correctifs pour une faille de s\u00e9curit\u00e9 critique dans ses dispositifs de pare-feu qui pourraient \u00eatre exploit\u00e9s pour obtenir l&#8217;ex\u00e9cution de code \u00e0 distance sur les syst\u00e8mes concern\u00e9s.<\/p>\n<p>Le probl\u00e8me, suivi comme <a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-28771\" target=\"_blank\">CVE-2023-28771<\/a>, est not\u00e9 9,8 sur le syst\u00e8me de notation CVSS.  Les chercheurs de TRAPA Security ont \u00e9t\u00e9 cr\u00e9dit\u00e9s d&#8217;avoir signal\u00e9 la faille.<\/p>\n<p>&#8220;Une mauvaise gestion des messages d&#8217;erreur dans certaines versions de pare-feu pourrait permettre \u00e0 un attaquant non authentifi\u00e9 d&#8217;ex\u00e9cuter certaines commandes du syst\u00e8me d&#8217;exploitation \u00e0 distance en envoyant des paquets sp\u00e9cialement con\u00e7us \u00e0 un appareil affect\u00e9&#8221;, a d\u00e9clar\u00e9 Zyxel. <a rel=\"nofollow noopener\" href=\"https:\/\/www.zyxel.com\/global\/en\/support\/security-advisories\/zyxel-security-advisory-for-remote-command-injection-vulnerability-of-firewalls\" target=\"_blank\">a dit<\/a> dans un avis le 25 avril 2023.<\/p>\n<p>Les produits impact\u00e9s par la faille sont &#8211;<\/p>\n<ul>\n<li>ATP (versions ZLD V4.60 \u00e0 V5.35, patch\u00e9 dans ZLD V5.36)<\/li>\n<li>USG FLEX (versions ZLD V4.60 \u00e0 V5.35, corrig\u00e9es dans ZLD V5.36)<\/li>\n<li>VPN (versions ZLD V4.60 \u00e0 V5.35, patch\u00e9 dans ZLD V5.36), et<\/li>\n<li>ZyWALL\/USG (versions ZLD V4.60 \u00e0 V4.73, corrig\u00e9es dans ZLD V4.73 Patch 1)<\/li>\n<\/ul>\n<p>Zyxel a \u00e9galement <a rel=\"nofollow noopener\" href=\"https:\/\/www.zyxel.com\/global\/en\/support\/security-advisories\/zyxel-security-advisory-for-xss-vulnerability-and-post-authentication-command-injection-vulnerability-in-firewalls\" target=\"_blank\">adress\u00e9<\/a> une vuln\u00e9rabilit\u00e9 d&#8217;injection de commande post-authentification tr\u00e8s grave affectant certaines versions de pare-feu (<a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-27991\" target=\"_blank\">CVE-2023-27991<\/a>score CVSS\u00a0: 8,8) qui pourrait permettre \u00e0 un attaquant authentifi\u00e9 d&#8217;ex\u00e9cuter certaines commandes du syst\u00e8me d&#8217;exploitation \u00e0 distance.<\/p>\n<p>La lacune, qui affecte les appareils ATP, USG FLEX, USG FLEX 50(W) \/ USG20(W)-VPN et VPN, a \u00e9t\u00e9 r\u00e9solue dans ZLD V5.36.<\/p>\n<div class=\"ad_two clear\" style=\"margin: 20px 10px 30px 0;background: rgb(249 251 255);color: rgb(22, 7, 85);padding: 0px 5%;border: 2px solid rgb(217 222 255);border-radius: 10px;text-align: left;box-shadow: 10px 10px 0 #e2ebff;border-top-left-radius: 50px;border-bottom-right-radius: 50px;\"> <span style=\"font-size:14px;margin:25px 0 0 0;font-weight:900;background: #dbdefc;display:inline-block;padding: 3px 20px;border-radius: 100px;letter-spacing: 0.5px;color: #596cec;\">WEBINAIRE \u00c0 VENIR<\/span><\/p>\n<p>Apprenez \u00e0 arr\u00eater les ransomwares avec une protection en temps r\u00e9el<\/p>\n<p style=\"text-align:left;font-size:17px;line-height:30px;margin: 10px 0;color: #4e6a8d;\">Rejoignez notre webinaire et d\u00e9couvrez comment arr\u00eater les attaques de ransomwares dans leur \u00e9lan gr\u00e2ce \u00e0 la MFA en temps r\u00e9el et \u00e0 la protection des comptes de service.<\/p>\n<p><a rel=\"nofollow noopener\" href=\"https:\/\/thn.news\/silver-web-inside\" target=\"_blank\" style=\"padding: 10px 20px;border-radius: 8px;background-color: #4469f5;font-size:16px;display:inline-block;color:#fff;border:0;line-height:inherit;text-decoration:none;cursor:pointer;MARGIN: 10px 0 25px 0;float:left;font-weight:500;letter-spacing: 0.2px;\">Sauvez ma place\u00a0!<\/a><\/div>\n<p>Enfin, la soci\u00e9t\u00e9 a \u00e9galement <a rel=\"nofollow noopener\" href=\"https:\/\/www.zyxel.com\/global\/en\/support\/security-advisories\/zyxel-security-advisory-for-multiple-vulnerabilities-of-firewalls-and-aps\" target=\"_blank\">correctifs exp\u00e9di\u00e9s<\/a> pour cinq failles de gravit\u00e9 \u00e9lev\u00e9e affectant plusieurs pare-feu et p\u00e9riph\u00e9riques de point d&#8217;acc\u00e8s (AP) (de CVE-2023-22913 \u00e0 CVE-2023-22918) qui pourraient entra\u00eener l&#8217;ex\u00e9cution de code et provoquer une condition de d\u00e9ni de service (DoS).<\/p>\n<p>Nikita Abramov de la soci\u00e9t\u00e9 russe de cybers\u00e9curit\u00e9 Positive Technologies a \u00e9t\u00e9 reconnue pour avoir signal\u00e9 les probl\u00e8mes.  Abramov, plus t\u00f4t cette ann\u00e9e, a \u00e9galement <a rel=\"nofollow noopener\" href=\"https:\/\/www.zyxel.com\/global\/en\/support\/security-advisories\/zyxel-security-advisory-for-command-injection-and-buffer-overflow-vulnerabilities-of-cpe-fiber-onts-and-wifi-extenders\" target=\"_blank\">d\u00e9couvert<\/a> quatre vuln\u00e9rabilit\u00e9s d&#8217;injection de commande et de d\u00e9passement de m\u00e9moire tampon dans les CPE, les ONT fibre et les extensions WiFi.<\/p>\n<p>Le plus grave des d\u00e9fauts est <a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2022-43389\" target=\"_blank\">CVE-2022-43389<\/a> (score CVSS : 9,8), une vuln\u00e9rabilit\u00e9 de d\u00e9bordement de tampon affectant les appareils CPE 5G NR\/4G LTE.<\/p>\n<p>&#8220;Il ne n\u00e9cessitait pas d&#8217;authentification pour \u00eatre exploit\u00e9 et conduisait \u00e0 l&#8217;ex\u00e9cution de code arbitraire sur l&#8217;appareil&#8221;, a d\u00e9clar\u00e9 Abramov. <a rel=\"nofollow noopener\" href=\"https:\/\/www.ptsecurity.com\/ww-en\/about\/news\/positive-technologies-helps-fix-vulnerabilities-in-routers-and-other-zyxel-devices\/\" target=\"_blank\">expliqu\u00e9<\/a> \u00e0 l&#8217;\u00e9poque.  &#8220;En cons\u00e9quence, un attaquant pourrait acc\u00e9der \u00e0 distance \u00e0 l&#8217;appareil et contr\u00f4ler enti\u00e8rement son fonctionnement.&#8221;<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ?  Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2023\/04\/zyxel-firewall-devices-vulnerable-to.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80228 avril 2023\ue804Ravie LakshmananS\u00e9curit\u00e9 r\u00e9seau \/ Vuln\u00e9rabilit\u00e9 Le fabricant d&#8217;\u00e9quipements de r\u00e9seautage Zyxel a publi\u00e9 des correctifs pour une faille de s\u00e9curit\u00e9 critique dans ses dispositifs de pare-feu qui pourraient \u00eatre exploit\u00e9s pour obtenir l&#8217;ex\u00e9cution de code \u00e0 distance sur les syst\u00e8mes concern\u00e9s. Le probl\u00e8me, suivi comme CVE-2023-28771, est not\u00e9 9,8 sur le syst\u00e8me de [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":708787,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[8074,507,5597,4168,4158,4165,4161,28640,2526,4157,4159,4171,4170,4167,4160,4163,4162,5467,71440,5265,4172,4169,4166,4164,4698,40731],"class_list":["post-708786","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-attaques","tag-aux","tag-code","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-dexecution","tag-distance","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-parefeu","tag-patch","tag-peripheriques","tag-securite-informatique","tag-securite-internet","tag-violation-de-donnees","tag-vulnerabilite-logicielle","tag-vulnerables","tag-zyxel"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/708786","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=708786"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/708786\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/708787"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=708786"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=708786"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=708786"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}