27 matches found
PT-2026-45689
A buffer overflow vulnerability in the UPnP DeletePortMapping command in Zyxel VMG4005-B50B firmware versions through 5.13ABRL.5.4C0 could allow an adjacent attacker to trigger a temporary denial-of-service DoS condition affecting the UPnP function of the affected device...
CVE-2018-18754
ZyXEL VMG3312-B10B 1.00AAPP.7 devices have a backdoor root account with the tTn3+Z@!Sr0O+ password hash in the etc/default.cfg file...
CVE-2025-6599
An uncontrolled resource consumption vulnerability in the web server of Zyxel DX3301-T0 firmware version 5.50ABVY.6.3C0 and earlier could allow an attacker to perform Slowloris‑style denial‑of‑service DoS attacks. Such attacks may temporarily block legitimate HTTP requests and partially disrupt...
EUVD-2018-17109
Malware in sbrugna...
EUVD-2019-6732
Malware in sbrugna...
EUVD-2019-16283
Malware in sbrugna...
EUVD-2015-5963
Malware in sbrugna...
EUVD-2023-39168
Malicious code in bioql PyPI...
CVE-2024-29974
UNSUPPORTED WHEN ASSIGNED The remote code execution vulnerability in the CGI program “fileupload-cgi” in Zyxel NAS326 firmware versions before V5.21AAZF.17C0 and NAS542 firmware versions before V5.21ABAG.14C0 could allow an unauthenticated attacker to execute arbitrary code by uploading a crafted...
Zyxel VMG8825-T50K 安全漏洞
The Zyxel VMG8825-T50K is an Internet access device from China Hopkins Zyxel. A security vulnerability exists in Zyxel VMG8825-T50K V5.50 ABOM.8.4 version C0 and prior versions. An attacker can exploit the vulnerability by sending a specially crafted HTTP POST request to cause the program to deny...
PT-2024-39223 · Zyxel · Zyxel Vmg8825-T50K
Name of the Vulnerable Software and Affected Versions: Zyxel VMG8825-T50K firmware versions through V5.50ABOM.8.4C0 Description: A buffer overflow vulnerability in the packet parser of the third-party library "libclinkc" could allow an attacker to cause a temporary denial of service DoS condition...
CVE-2024-5412
A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50ABOM.8C0 could allow an unauthenticated attacker to cause denial of service DoS conditions by sending a crafted HTTP request to a vulnerable device...
The vulnerability of the microprogrammed software for Zyxel NAS326 and Zyxel NAS542 lies in the lack of access control mechanisms. This allows attackers to enhance their privileges and gain unauthorized access to protected information.
The vulnerability of the microprogrammed software for Zyxel NAS326 and Zyxel NAS542 relates to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and gain unauthorized access to protected information by sending a specially crafted...
PT-2024-1934 · Zyxel · Zyxel Usg +1
Name of the Vulnerable Software and Affected Versions: Zyxel USG and Zyxel VPN affected versions not specified Description: The issue exists due to the lack of measures to neutralize special elements used in the operating system command. This can be exploited by a remote attacker to execute...
CVE-2023-5372
The post-authentication command injection vulnerability in Zyxel NAS326 firmware versions through V5.21AAZF.15C0 and NAS542 firmware versions through V5.21ABAG.12C0 could allow an authenticated attacker with administrator privileges to execute some operating system OS commands by sending a crafte...
The vulnerability of the Quagga microprogramming software for network devices such as ZyXEL VPN, USG FLEX, and ATP allows a intruder to gain unauthorized access to protected information.
The vulnerability of the Quagga microprogramming software for ZyXEL VPN, USG FLEX, and ATP devices is related to insufficient validation of input data. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...
VulnCheck KEV: CVE-2023-28770
The sensitive information exposure vulnerability in the CGI “ExportLog” and the binary “zcmd” in Zyxel DX5401-B0 firmware versions prior to V5.17ABYO.1C0 could allow a remote unauthenticated attacker to read the system files and to retrieve the password of the supervisor from the encrypted file...
Zyxel NAS326 操作系统命令注入漏洞
Zyxel NAS326 is a cloud storage NAS from China Heqin Zyxel. A security vulnerability exists in the Zyxel NAS326 V5.21 AAZF.14 firmware version prior to C0, NAS540 V5.21 AATB.11 firmware version prior to C0, and NAS542V5.21 firmware version prior to V5.21, which originates from a vulnerability tha...
Zyxel DX5401-B0 安全漏洞
The Zyxel DX5401-B0 is a wireless enhancement device from China's Hopkins Zyxel. A security vulnerability exists in the Zyxel DX5401-B0 V5.17ABYO.1C0 firmware version, which originates from the exposure of sensitive information in CGI ExportLog and binary zcmd. An attacker can exploit this...
CVE-2021-35028
A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands...