5 matches found
The vulnerability of the Remote_help-cgi file in the microprogramming software for network storage devices Zyxel NAS326 and NAS542 allows a intruder to execute arbitrary code.
The vulnerability of the Remotehelp-cgi file in the microprogramming software for network storage devices Zyxel NAS326 and NAS542 exists due to the failure to take measures to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a malicious actor ...
PT-2024-4078 · Zyxel · Zyxel Nas326 +1
Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 versions prior to V5.21AAZF.17C0 Zyxel NAS542 versions prior to V5.21ABAG.14C0 Description: The command injection vulnerability in the setCookie parameter could allow an unauthenticated attacker to execute some operating system O...
PT-2024-4420 · Zyxel · Zyxel Nas542 +1
Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 versions prior to V5.21AAZF.17C0 Zyxel NAS542 versions prior to V5.21ABAG.14C0 Description: A remote code execution vulnerability exists in the file upload-cgi program. An unauthenticated attacker can execute arbitrary code by...
PT-2023-7332 · Zyxel · Zyxel Nas326 +1
Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 version V5.21AAZF.14C0 Zyxel NAS542 version V5.21ABAG.11C0 Description: A command injection issue exists in the web server of the Zyxel NAS326 and NAS542 firmware due to the lack of neutralization of special elements used in...
PT-2023-7313 · Zyxel · Zyxel Nas326 +1
Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 version V5.21AAZF.14C0 Zyxel NAS542 version V5.21ABAG.11C0 Description: A command injection issue exists in the show zysync server contents function, allowing an unauthenticated attacker to execute some operating system commands ...