EUVD-2026-29378

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

CVE-2026-7287

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

PT-2026-39935

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

CVE-2022-36756

DIR845L A1 v1.00-v1.03 is vulnerable to command injection via /htdocs/upnpinc/gena.php...

ZyXEL VMG3312-B10B 1.00(AAPP.7) - Credential Disclosure

ZyXEL VMG3312-B10B 1.00AAPP.7 - Credential Disclosure Exploit Title: ZyXEL VMG3312-B10B - Leak Credentials "; else continue; else echo "pfff"; ftpclose$ftpconn; ?...

ZyXEL VMG3312-B10B < 1.00(AAPP.7) - Credential Disclosure

Exploit Title: ZyXEL VMG3312-B10B - Leak Credentials "; else continue; else echo "pfff"; ftpclose$ftpconn; ?...

Buffalo BBR-4HG and BBR-4MG Cross-Site Scripting Vulnerabilities

The Buffalo BBR-4HG and BBR-4MG are both broadband router products from the Buffalo Group of Japan. A cross-site scripting vulnerability exists in the Buffalo BBR-4HG and BBR-4MG broadband routers using firmware versions 1.00 through 1.48 and 2.00 through 2.07. A remote attacker could exploit thi...

Input validation

Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified vectors...

CVE-2015-7284

Cross-site request forgery CSRF vulnerability on ZyXEL NBG-418N devices with firmware 1.00AADZ.3C0 allows remote attackers to hijack the authentication of arbitrary users...

CVE-2015-7283

The web administration interface on ZyXEL NBG-418N devices with firmware 1.00AADZ.3C0 has a default password of 1234 for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session...

CVE-2015-6018

The diagnostic-ping implementation on ZyXEL PMG5318-B20A devices with firmware before 1.00AANC.2C0 allows remote attackers to execute arbitrary commands via the PingIPAddr parameter...

Default credentials

The web administration interface on ZyXEL NBG-418N devices with firmware 1.00AADZ.3C0 has a default password of 1234 for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session...

CVE-2015-7284

CVE-2015-7284 describes a CSRF vulnerability in ZyXEL NBG-418N devices running firmware 1.00(AADZ.3)C0. An attacker can hijack the authentication of arbitrary users via forged requests, potentially executing actions with the victim’s session privileges. Documented impact includes remote attacker ...

CVE-2015-7283

The web administration interface on ZyXEL NBG-418N devices with firmware 1.00AADZ.3C0 has a default password of 1234 for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session...

CVE-2014-7278

The login page on the ZyXEL SBG-3300 Security Gateway with firmware 1.00AADY.4C0 and earlier allows remote attackers to cause a denial of service persistent web-interface outage via JavaScript code within unspecified "welcome message" form data that is improperly handled during use for the loginM...

CVE-2014-7277

The ZyXEL SBG-3300 Security Gateway (firmware up to 1.00(AADY.4)C0) is affected by CVE-2014-7277, a Stored Server XSS in the login page. The vulnerability arises from improper handling of the loginMessage element during rendering of the login page, allowing remote attackers to inject arbitrary we...

Hardcoded credentials

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 has a hardcoded password of qweasdzxc for an unspecified account, which allows remote attackers to obtain index.asp login access via an HTTP request...

Stack overflow

Multiple stack-based buffer overflows on the ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 allow man-in-the-middle attackers to execute arbitrary code via 1 a long temp attribute in a yweather:condition element in a forecastrss file that is processed by the checkWeather...

CVE-2014-0355

Multiple stack-based buffer overflows on the ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 allow man-in-the-middle attackers to execute arbitrary code via 1 a long temp attribute in a yweather:condition element in a forecastrss file that is processed by the checkWeather...

CVE-2010-2363

The IPv6 Unicast Reverse Path Forwarding RPF implementation on the SEIL/X1, SEIL/X2, and SEIL/B1 routers with firmware 1.00 through 2.73, when strict mode is used, does not properly drop packets, which might allow remote attackers to bypass intended access restrictions via a spoofed IP address...