The remote host is a Zyxel device that is affected by a remote command injection vulnerability due to improper validation of user input. A remote, unauthenticated attacker can exploit this issue, via a specially crafted HTTP request, to execute commands as the ‘nobody’ user on the remote host.
Binary data zyxel_CVE-2022-30525.nbin