5 matches found
Zyxel Router Command Injection
Firmware version of the Zyxel TCLinux device is affected by command injection vulnerability: - The ZyXEL three router models - ZyXEL P660HN-T1A v1, ZyXEL P660HN-T1A v2 and Billion 5200W-T - router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2017-18368 Zyxel P660HN-T1A Routers Command Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose...
CVE-2017-18368
CVE-2017-18368 describes a command injection in the ZyXEL P660HN-T1A router family (v1/v2; and Billion 5200W-T per Nessus) via the Remote System Log forwarding ViewLog.asp page, exploitable by an unauthenticated user through the remote_host parameter. Affected firmware exists on ZyXEL TCLinux dev...
CVE-2017-18368
The ZyXEL P660HN-T1A v1 TCLinux Fw $7.3.15.0 v001 / 3.40ULM.0b31 router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user. The vulnerability is in the ViewLog.asp page and can be exploited...
CVE-2017-18368
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/trueonlinep660hnv1rce.rb 2019-05-02 20:26:39+00:00| seen| https://t.me/cibsecurity/4083 2019-11-05 16:35:46+00:00| seen|...