Lucene search
CVE-2024-29972
ποΈΒ 04 Jun 2024Β 02:47:15Reported byΒ ZyxelTypeΒ 
Β cveπΒ web.nvd.nist.govπΒ 63Β Viewsπ WEB
CVE-2024-29972 NVD security document
Show more
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | Exploit for OS Command Injection in Zyxel Nas326 Firmware | 20 Jun 202411:12 | β | githubexploit |
| Exploit for OS Command Injection in Zyxel Nas326 Firmware | 4 Jul 202421:31 | β | githubexploit |
 | CVE-2024-29972 | 4 Jun 202401:24 | β | cvelist |
 | CVE-2024-29972 | 4 Jun 202402:15 | β | nvd |
 | CVE-2024-29972 | 4 Jun 202401:24 | β | vulnrichment |
 | Zyxel NAS326 Firmware < V5.21(AAZF.17)C0 - NsaRescueAngel Backdoor Account | 1 Jul 202401:42 | β | nuclei |
 | Zyxel NAS Multiple Vulnerabilities | 14 Jun 202400:00 | β | nessus |
 | Zyxel NAS Multiple Vulnerabilities (Jun 2024) - Active Check | 6 Jun 202400:00 | β | openvas |
 | Zyxel Releases Patches for Firmware Vulnerabilities in EoL NAS Models | 5 Jun 202407:10 | β | thn |
Node
Node
[
{
"defaultStatus": "unaffected",
"product": "NAS326 firmware",
"vendor": "Zyxel",
"versions": [
{
"status": "affected",
"version": "< V5.21(AAZF.17)C0"
}
]
},
{
"defaultStatus": "unaffected",
"product": "NAS542 firmware",
"vendor": "Zyxel",
"versions": [
{
"status": "affected",
"version": "< V5.21(ABAG.14)C0"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| command | request body | /remote_help-cgi | Command injection vulnerability in CGI program allowing OS command execution via crafted HTTP POST request. | CWE-78 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo04 Jun 2024 02:15Current
8.3High risk
Vulners AI Score8.3
CVSS39.8
EPSS0.0178
SSVC