2 matches found
CVE-2020-29299
creationtimestamp| type| source ---|---|--- 2020-12-27 12:27:27+00:00| seen| https://t.me/cibsecurity/21323...
CVE-2020-29299
CVE-2020-29299 affects Zyxel SD-OS/On-Premise lines (VPN On-Premise, VPN Orchestrator, USG, USG FLEX, ATP, NSG). A command injection occurs via an admin-provided input string to chg_exp_pwd during a password-change action. Root cause stated in multiple sources: lack of input validation/cleanup in...