CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

RedhatCVE•added 2026/04/29 6:18 a.m.•1 views

CVE-2026-0711

A post-authentication command injection vulnerability in the EasyMesh-related APIs of Zyxel DX3300-T0 firmware versions through 5.50ABVY.7.1C0 could allow an authenticated, adjacent attacker with administrator privileges to execute OS commands on an affected device...

6.8CVSS5.5AI score0.00278EPSS

Exploits0References1

NVD•added 2026/04/28 3:16 a.m.•1 views

CVE-2026-0711

6.8CVSS0.00278EPSS

Exploits0References1

CVE•added 2026/04/28 1:57 a.m.•7 views

CVE-2026-0711

The CVE-2026-0711 issue affects Zyxel DX3300-T0 devices with firmware up to 5.50(ABVY.7.1)C0, where a post-authentication command injection exists in the EasyMesh-related APIs. An authenticated, adjacent attacker with administrator privileges can execute OS commands on the device, enabling high i...

6.8CVSS5.5AI score0.00278EPSS

Exploits0References1

EUVD•added 2026/04/28 1:57 a.m.•3 views

EUVD-2026-25968

6.8CVSS5.4AI score0.00278EPSS

Exploits0References1

Vulnrichment•added 2026/04/28 1:57 a.m.•1 views

CVE-2026-0711

6.8CVSS5.4AI score0.00278EPSS

Exploits0References1

Cvelist•added 2026/04/28 1:57 a.m.•27 views

CVE-2026-0711

6.8CVSS0.00278EPSS

Exploits0References1

Positive Technologies•added 2026/04/28 12:0 a.m.•2 views

PT-2026-35645

6.8CVSS5.5AI score0.00278EPSS

Exploits0References2

CNNVD•added 2026/04/28 12:0 a.m.•5 views

Zyxel DX3300-T0 操作系统命令注入漏洞

The Zyxel DX3300-T0 is a small wireless WiFi router produced by the Chinese company Zyxel. Versions of the Zyxel DX3300-T0 prior to 5.50ABVY.7.1C0 contained an operating system command injection vulnerability. This vulnerability stemmed from a command injection flaw in the APIs related to EasyMes...

6.8CVSS5.9AI score0.00278EPSS

Exploits0References2

NVD•added 2025/11/18 2:15 a.m.•2 views

CVE-2025-8693

A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50ABVY.6.3C0 and earlier could allow an authenticated attacker to execute operating system OS commands on an affected device...

8.8CVSS0.0013EPSS

Exploits0References1

OSV•added 2025/11/18 2:15 a.m.•1 views

CVE-2025-8693

8.8CVSS5.9AI score0.0013EPSS

Exploits0References1

EUVD•added 2025/11/18 1:25 a.m.•2 views

EUVD-2025-197902

8.8CVSS7.2AI score0.0013EPSS

Exploits0References2

Vulnrichment•added 2025/11/18 1:25 a.m.•2 views

CVE-2025-8693

8.8CVSS7.3AI score0.0013EPSS

Exploits0References1

CVE•added 2025/11/18 1:25 a.m.•12 views

CVE-2025-8693

Zyxel DX3300-T0 firmware versions prior to 5.50(ABVY.6.3)C0 are affected by a post-authentication command-injection vulnerability in the priv parameter that could allow an authenticated attacker to execute OS commands. The PT-2025-47237 entry confirms the affected firmware range and the impact. R...

8.8CVSS7.3AI score0.0013EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/11/18 12:0 a.m.•1 views

Zyxel DX3300-T0 操作系统命令注入漏洞

The Zyxel DX3300-T0 is a small wireless WiFi router from China Hopkins Zyxel. An operating system command injection vulnerability exists in Zyxel DX3300-T0 5.50 ABVY.6.3 C0 and earlier versions, which stems from the presence of post-authentication command injection in the priv parameter, which...

8.8CVSS7.5AI score0.0013EPSS

Exploits0References1

Positive Technologies•added 2025/11/18 12:0 a.m.•2 views

PT-2025-47237

Name of the Vulnerable Software and Affected Versions Zyxel DX3300-T0 firmware versions prior to 5.50ABVY.6.3C0 Description A post-authentication command injection issue exists in the priv parameter. Successful exploitation allows an authenticated attacker to execute operating system OS commands ...

8.8CVSS7.5AI score0.0013EPSS

Exploits0References11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by