Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

EUVD
EUVDadded 2025/10/21 1:49 a.m.4 views

EUVD-2025-35120

A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.40, USG FLEX series firmware versions from V4.50 through V5.40, USG FLEX 50W series firmware versions from V4.16 through V5.40, and USG20W-VPN series firmware versions from V4.16...

7.2CVSS7.1AI score0.01496EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2023/12/01 12:0 a.m.1 views

The vulnerability of the microprogrammed software of ZyXEL USG FLEX and ATP devices, related to the operation of writing data beyond the buffer in memory, allows a intruder to cause service failure.

The vulnerability of the microprogrammed network device software of ZyXEL USG FLEX and ATP lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure by executing certain commands...

4.6CVSS5.8AI score0.00233EPSS
Exploits0References3Affected Software4
BDU FSTEC
BDU FSTECadded 2023/05/25 12:0 a.m.4 views

The vulnerability of the microprogrammed software of Zyxel ATP network devices, such as USG FLEX, USG FLEX50(W), USG20(W)-VPN, VPN, ZyWALL/USG, arises from copying buffers without checking the size of the input data. This allows a malicious actor to execute arbitrary code or cause service failures.

The vulnerability of microprogrammed network devices such as Zyxel ATP, USG FLEX, USG FLEX50W, USG20W-VPN, VPN, ZyWALL/USG lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service...

10CVSS8.6AI score0.28144EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2023/05/24 12:0 a.m.2 views

The vulnerability of microprogrammed software in network devices such as Zyxel ZyWALL/USG, VPN, USG FLEX, ATP allows a perpetrator to execute arbitrary commands.

The vulnerability of Zyxel ZyWALL/USG, VPN, USG FLEX, and ATP network devices exists due to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

10CVSS8.4AI score0.99284EPSS
Exploits8References3Affected Software19
BDU FSTEC
BDU FSTECadded 2020/03/20 12:0 a.m.3 views

The vulnerability of the weblogin.cgi component in NAS (Network Attached Storage) storage systems and micro-programming software for Ethernet interfaces of UTM, ATP, and VPN devices allows a hacker to execute arbitrary code.

The vulnerability of the weblogin.cgi component in NAS Network Attached Storage storage systems and microprogramming software for Ethernet interfaces of UTM, ATP, and VPN devices is related to errors during the verification of the username parameter. Exploiting this vulnerability allows a malicio...

10CVSS8.5AI score0.99988EPSS
Exploits2References5
Rows per page
Query Builder