4 matches found
CVE-2020-15326
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded certificate for Ejabberd in ejabberd.pem...
Zyxel CloudCNM SecuManager 信任管理问题漏洞
Zyxel CloudCNM SecuManager is a set of network management software from China Hopkins Zyxel. The software supports centralized control, device management and intelligent monitoring. A trust management issue vulnerability exists in Zyxel CloudCNM SecuManager version 3.1.0 and 3.1.1, which stems fr...
PT-2020-14362 · Zyxel +1 · Zyxel Cloudcnm Secumanager +1
Name of the Vulnerable Software and Affected Versions: Zyxel CloudCNM SecuManager versions 3.1.0 through 3.1.1 Description: The issue concerns a hardcoded certificate for Ejabberd, which is located in the ejabberd.pem file. Recommendations: For versions 3.1.0 and 3.1.1, consider removing or...
Zyxel CNM SecuManager 3.1.0 / 3.1.1 Hardcoded Keys / XSS / Code Execution
Hello, Please find a text-only version below sent to security mailing lists. The HTML version on "Multiple vulnerabilities found in Zyxel CNM SecuManager" is posted here: https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html === text-version of the advisory ===...