745 matches found
CVE-2026-0399
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint...
CVE-2026-0401
A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall...
CVE-2026-0401
A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall...
CVE-2026-0401
The provided documents identify CVE-2026-0401 as a post-authentication NULL Pointer Dereference in SonicOS that allows a remote attacker to crash a firewall. Affected software is SonicOS; the underlying cause is a NULL pointer dereference. The sources do not specify vulnerable versions, impacted ...
CVE-2026-0400
The CVE-2026-0400 entry concerns SonicOS and is a post-authentication Format String vulnerability that can cause a firewall to crash. Affected software is SonicOS (no version details provided). Root cause: improper handling of format strings in the affected component, leading to denial of service...
CVE-2026-0400
A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall...
CVE-2026-0400
A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall...
CVE-2026-0399
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint...
CVE-2026-0399
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint...
CVE-2026-0399
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface caused by improper bounds checking in an API endpoint. Affected: SonicOS management interface. Root cause: bounds checking flaw leading to stack overflow after authentication. Impact: pote...
SonicOS multiple post-authentication vulnerabilities
1 CVE-2026-0399 - Multiple SonicOS post-authentication Stack-based Buffer Overflow vulnerabilitiesMultiple post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall.CVSS Score: 4.9 CVSS Vector:...
CVE-2025-13943
A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50ABVY.7C0 could allow an authenticated attacker to execute operating system OS commands on an affected device...
CVE-2026-1459
A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...
CVE-2026-1459
A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...
EUVD-2026-7399
A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...
CVE-2026-1459
CVE-2026-1459 describes a post-authentication command-injection vulnerability in Zyxel VMG3625-T50B devices, affecting firmware up to 5.50(ABPM.9.7)C0. The issue is in the TR-369 certificate download CGI program; an authenticated administrator can execute OS commands on the device. Metrics indica...
PT-2026-21644
Name of the Vulnerable Software and Affected Versions Zyxel EX3301-T0 firmware versions through 5.50ABVY.7C0 Description A post-authentication command injection issue exists in the log file download function. This could allow an authenticated attacker to execute operating system OS commands on an...
PT-2026-21747
Name of the Vulnerable Software and Affected Versions SonicOS affected versions not specified Description A post-authentication NULL Pointer Dereference issue exists in SonicOS. This can allow a remote attacker to crash a firewall. Recommendations At the moment, there is no information about a...
PT-2026-21745
Name of the Vulnerable Software and Affected Versions SonicOS affected versions not specified Description The software contains post-authentication stack-based buffer overflow vulnerabilities within its management interface. These issues stem from insufficient bounds checking in an ''API...
PT-2026-21645
Name of the Vulnerable Software and Affected Versions Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 Description A post-authentication command injection exists in the TR-369 certificate download CGI program. An authenticated attacker with administrator privileges could execute...