Zyxel NAS 326 Shell Metacharacter Injection Vulnerability
Zyxel NAS 326 is a two-drive personal cloud storage device from Zyxel Hopscotch. A Shell metacharacter injection vulnerability exists in the package installer in Zyxel NAS 326 5.21 and earlier versions. An authenticated attacker can exploit this vulnerability to execute arbitrary code via multipl...