3 matches found
Critical RCE Vulnerability Affects Zyxel NAS Devices — Firmware Patch Released
Networking equipment maker Zyxel has released patches for a critical security flaw impacting its network-attached storage NAS devices. Tracked as CVE-2022-34747 CVSS score: 9.8, the issue relates to a "format string vulnerability" affecting NAS326, NAS540, and NAS542 models. Zyxel credited...
CVE-2022-34747
The CVE-2022-34747 entry applies to Zyxel NAS326, NAS540, and NAS542 devices with firmware versions prior to V5.21(AAZF.12)C0. The root cause is a format-string vulnerability in UDP packet handling that could allow an attacker to achieve unauthorized remote code execution. Affected models include...
CVE-2022-34747
A format string vulnerability in Zyxel NAS326 firmware versions prior to V5.21AAZF.12C0 could allow an attacker to achieve unauthorized remote code execution via a crafted UDP packet...