5 matches found
Zyxel USG FLEX H series uOS 1.31 - Privilege Escalation
Exploit Title: Zyxel USG FLEX H series uOS 1.31 - Privilege Escalation Date: 2025-04-23 Exploit Author: Marco Ivaldi Vendor Homepage: https://www.zyxel.com/ Version: Zyxel uOS V1.31 see https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-= =3D...
📄 Zyxel uOS 1.31 Privilege Escalation
The USG FLEX H Series with the operating system Zyxel uOS version 1.31 suffers from a local privilege escalation vulnerability via the setuid binary fermion-wrapper. -- HNS-2025-10 - HN Security Advisory - https://security.humanativaspa.it/ Title: Local privilege escalation via Zyxel...
CVE-2025-1731
An incorrect permission assignment vulnerability in the PostgreSQL commands of the Zyxel USG FLEX H series uOS firmware versions from V1.20 through V1.31 could allow an authenticated local attacker with low privileges to gain access to the Linux shell and escalate their privileges by crafting...
CVE-2025-1731
creationtimestamp| type| source ---|---|--- 2025-04-22 03:02:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12791 2025-04-22 05:00:32+00:00| seen| Telegram/z3hrnS4sCgLCaWMA7rI3OA9UpXy1hGKImXcclK-WChPDY5I 2025-04-22 05:51:42+00:00| seen| https://t.me/cvedetector/23478 2025-04-22...
CVE-2025-1731
An incorrect permission assignment vulnerability in the PostgreSQL commands of the Zyxel USG FLEX H series uOS firmware versions from V1.20 through V1.31 could allow an authenticated local attacker with low privileges to gain access to the Linux shell and escalate their privileges by crafting...