3 matches found
Zyxel Routers Privilege Escalation (CVE-2020-24355)
A Privilege Escalation vulnerability exists in Zyxel VMG5313-B30B router. Successful exploitation of this vulnerability could allow a remote attacker to create new users with elevated privileges and by that damage the affected system...
CVE-2020-24355
Zyxel VMG5313-B30B router on firmware 5.13ABCJ.6b31127, and possibly older versions of firmware are affected by insecure permissions which allows regular and other users to create new users with elevated privileges. This is done by changing "FirstIndex" field in JSON that is POST-ed during accoun...
CVE-2020-24355
CVE-2020-24355 affects Zyxel VMG5313-B30B routers; the vulnerability stems from insecure permissions that let an attacker create new users with elevated privileges by manipulating the FirstIndex field in the account-creation JSON (and possibly during deletion). Affected firmware includes 5.13(ABC...