Unrated severityNVD Advisory· Published Apr 22, 2025· Updated Feb 26, 2026
CVE-2025-1732
CVE-2025-1732
Description
An improper privilege management vulnerability in the recovery function of the Zyxel USG FLEX H series uOS firmware version V1.31 and earlier could allow an authenticated local attacker with administrator privileges to upload a crafted configuration file and escalate privileges on a vulnerable device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<= V1.31+ 1 more
- (no CPE)range: <= V1.31
- (no CPE)range: <= V1.31
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.