3 matches found
CVE-2026-1459
A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50ABPM.9.7C0 could allow an authenticated attacker with administrator privileges to execute operating system OS commands on an affected device...
CVE-2026-1459
CVE-2026-1459 describes a post-authentication command-injection vulnerability in Zyxel VMG3625-T50B devices, affecting firmware up to 5.50(ABPM.9.7)C0. The issue is in the TR-369 certificate download CGI program; an authenticated administrator can execute OS commands on the device. Metrics indica...
Zyxel VMG3625-T50B 操作系统命令注入漏洞
The Zyxel VMG3625-T50B is a WiFi device produced by the Zyxel company. The firmware version 5.50ABPM.9.7C0 and earlier contain a vulnerability related to operating system command injection. This vulnerability stems from the CGI program used for downloading the TR-369 certificate, which allows for...