CVE-2024-12398

An improper privilege management vulnerability in the web management interface of the Zyxel WBE530 firmware versions through 7.00ACLE.3 and WBE660S firmware versions through 6.70ACGG.2 could allow an authenticated user with limited privileges to escalate their privileges to that of an...

CVE-2024-12398

CVE-2024-12398 affects Zyxel WBE530 (firmware up to 7.00(ACLE.3)) and WBE660S (up to 6.70(ACGG.2)). The issue is improper privilege management in the device web management interface that can let an authenticated user with limited privileges escalate to administrator and upload configuration files...

Zyxel WBE530 安全漏洞

Zyxel WBE530 is a triple-radio unified access point from China Heqin Zyxel. A security vulnerability exists in Zyxel WBE530 7.00 ACLE.3 and prior versions, which stems from the presence of an improper privilege management vulnerability that could allow authenticated users with limited privileges ...

PT-2024-10082 · Zyxel · Zyxel Wbe530 +1

Name of the Vulnerable Software and Affected Versions: Zyxel WBE530 firmware versions through 7.00ACLE.3 Zyxel WBE660S firmware versions through 6.70ACGG.2 Description: An improper privilege management vulnerability in the web management interface could allow an authenticated user with limited...

CVE-2024-7261

The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70ABVT.4 and earlier, WAC500 firmware version 6.70ABVS.4 and earlier, WAX655E firmware version 7.00ACDO.1 and earlier, WBE530 firmware version 7.00ACLE.1 and earlier,...

CVE-2024-7261

The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70ABVT.4 and earlier, WAC500 firmware version 6.70ABVS.4 and earlier, WAX655E firmware version 7.00ACDO.1 and earlier, WBE530 firmware version 7.00ACLE.1 and earlier,...

CVE-2024-7261

The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70ABVT.4 and earlier, WAC500 firmware version 6.70ABVS.4 and earlier, WAX655E firmware version 7.00ACDO.1 and earlier, WBE530 firmware version 7.00ACLE.1 and earlier,...

Zyxel多款产品 操作系统命令注入漏洞

Zyxel NWA1123ACv3 is a hybrid access point, Zyxel WAC500 is a dual-radio unified access point, and Zyxel WBE530 is a triple-radio unified access point. An operating system command injection vulnerability exists in several Zyxel products due to an improperly neutralized special element in the...

PT-2024-6139 · Zyxel · Wax655E +4

Name of the Vulnerable Software and Affected Versions: Zyxel NWA1123ACv3 versions 6.70ABVT.4 and earlier Zyxel WAC500 versions 6.70ABVS.4 and earlier Zyxel WAX655E versions 7.00ACDO.1 and earlier Zyxel WBE530 versions 7.00ACLE.1 and earlier Zyxel USG LITE 60AX version V2.00ACIP.2 Description: The...