Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:2 a.m.23 views

CVE-2023-27992

The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21AAZF.14C0, NAS540 firmware versions prior to V5.21AATB.11C0, and NAS542 firmware versions prior to V5.21ABAG.11C0 could allow an unauthenticated attacker to execute some operating system OS...

9.8CVSS8AI score0.84195EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/11 12:0 a.m.33 views

Zyxel NAS Pre-Auth Command Injection vulnerability (CVE-2023-27992)

The Zyxel NAS is potentially affected by a pre-authentication command injection vulnerability. This Zyxel device firmware is missing authentication logic which could allow an unauthenticated attacker to execute some OS commands remotely by sending crafted packets to an affected device. Note that...

9.8CVSS9AI score0.84195EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/06/20 12:12 p.m.144 views

Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices

Zyxel has rolled out security updates to address a critical security flaw in its network-attached storage NAS devices that could result in the execution of arbitrary commands on affected systems. Tracked as CVE-2023-27992 CVSS score: 9.8, the issue has been described as a pre-authentication comma...

9.8CVSS8.2AI score0.84195EPSS
Exploits0
Circl
Circl
added 2023/06/20 12:6 p.m.13 views

CVE-2023-27992

creationtimestamp| type| source ---|---|--- 2023-06-20 12:06:41+00:00| seen| https://t.me/ctinow/119097 2023-06-20 14:14:50+00:00| seen| https://t.me/thehackernews/3503 2023-06-20 15:34:47+00:00| seen| https://t.me/KomunitiSiber/382 2023-06-20 16:32:20+00:00| seen|...

9.8CVSS7.6AI score0.84195EPSS
Exploits0References12
NVD
NVD
added 2023/06/19 12:15 p.m.35 views

CVE-2023-27992

The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21AAZF.14C0, NAS540 firmware versions prior to V5.21AATB.11C0, and NAS542 firmware versions prior to V5.21ABAG.11C0 could allow an unauthenticated attacker to execute some operating system OS...

9.8CVSS9.9AI score0.84195EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/19 11:42 a.m.46 views

CVE-2023-27992

The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21AAZF.14C0, NAS540 firmware versions prior to V5.21AATB.11C0, and NAS542 firmware versions prior to V5.21ABAG.11C0 could allow an unauthenticated attacker to execute some operating system OS...

9.8CVSS10AI score0.84195EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/19 11:42 a.m.17 views

CVE-2023-27992

The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21AAZF.14C0, NAS540 firmware versions prior to V5.21AATB.11C0, and NAS542 firmware versions prior to V5.21ABAG.11C0 could allow an unauthenticated attacker to execute some operating system OS...

9.8CVSS8.2AI score0.84195EPSS
Exploits0References1
CVE
CVE
added 2023/06/19 11:42 a.m.528 views

CVE-2023-27992

CVE-2023-27992 affects Zyxel NAS326 (firmware before V5.21(AAZF.14)C0), NAS540 (before V5.21(AATB.11)C0), and NAS542 (before V5.21(ABAG.11)C0). It is a pre-authentication command-injection vulnerability allowing an unauthenticated attacker to remotely execute OS commands via crafted HTTP requests...

9.8CVSS9.7AI score0.84195EPSS
In wildExploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/06/19 12:0 a.m.38 views

CVE-2023-27992

The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21AAZF.14C0, NAS540 firmware versions prior to V5.21AATB.11C0, and NAS542 firmware versions prior to V5.21ABAG.11C0 could allow an unauthenticated attacker to execute some operating system OS...

9.8CVSS9.8AI score0.84195EPSS
In wildExploits0References2
Rows per page
Query Builder