14 matches found
EUVD-2018-17046
Malware in sbrugna...
CVE-2023-34139
A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 and VPN series firmware versions 4.20 through 5.36 Patch 2, could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affecte...
CVE-2023-34139
A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 and VPN series firmware versions 4.20 through 5.36 Patch 2, could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affecte...
CVE-2023-34139
A command injection vulnerability in the Free Time WiFi hotspot feature of the Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 and VPN series firmware versions 4.20 through 5.36 Patch 2, could allow an unauthenticated, LAN-based attacker to execute some OS commands on an affecte...
Zyxel USG FLEX 操作系统命令注入漏洞
Zyxel USG FLEX is a firewall from China Hopkins Zyxel. It provides flexible VPN options IPsec, SSL or L2TP to provide flexible and secure remote access for remote work and management. A security vulnerability exists in the Zyxel USG FLEX that stems from a command injection in the Free Time WiFi...
PT-2023-3607 · Zyxel · Zyxel Vpn +1
Name of the Vulnerable Software and Affected Versions: Zyxel USG FLEX series firmware versions 4.50 through 5.36 Patch 2 Zyxel VPN series firmware versions 4.20 through 5.36 Patch 2 Description: A command injection vulnerability in the Free Time WiFi hotspot feature could allow an unauthenticated...
Access Control Vulnerabilities in Multiple ZyXEL Products
ZyXEL ZyWall 310 and others are products of Taiwan, China-based ZyXEL Corporation.ZyXEL ZyWall 310 is a 310 series VPN firewall appliance.ZyXEL ZyWall 110 is a 110 series VPN firewall appliance.ZyXEL USG1900 is a next-generation unified security gateway appliance. A security vulnerability exists ...
CVE-2019-12583
Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account generator. This can lead to unauthorised network access or Denial of Service...
CVE-2019-12583
Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account generator. This can lead to unauthorised network access or Denial of Service...
Improper access control
Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account generator. This can lead to unauthorised network access or Denial of Service...
CVE-2019-12583
Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account generator. This can lead to unauthorised network access or Denial of Service...
CVE-2018-5264
CVE-2018-5264 affects Ubiquiti UniFi 52 devices in hotspot mode. An attacker can bypass the intended 'free time' Wi‑Fi restrictions by requesting /guest/s/default/ to obtain a cookie, then using that cookie in /guest/s/default/login with the byfree parameter. CVSS metrics in the record indicate a...
Format Factory v2.95 - Buffer Overflow Vulnerabilities
Exploit for windows platform in category dos / poc Title: ====== Format Factory v2.95 - Buffer Overflow Vulnerabilities Introduction: ============= Format Factory is a multifunctional media converter. Provides functions below ... - All to MP4/3GP/MPG/AVI/WMV/FLV/SWF. - All to...
Format Factory v2.95 - Buffer Overflow Vulnerabilities
Document Title: =============== Format Factory v2.95 - Buffer Overflow Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=536 http://www.vulnerability-lab.com/getcontent.php?id=539 Release Date: ============= 2012-05-01 Vulnerability...