The vulnerability in the implementation of the export-cgi and fileUpload-cgi scripts allows a hacker to circumvent security restrictions and execute arbitrary code. This vulnerability affects the backup and configuration restoration functions of the Zyxel NAS326 and Zyxel NAS542 network storage devices.
The vulnerability of the export-cgi and fileupload-cgi implementations of the backup and configuration restoration functions for Zyxel NAS326 and Zyxel NAS542 network storage devices is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows an attacker to bypass...