Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2024/06/05 12:0 a.m.6 views

The vulnerability of the Remote_help-cgi file in the microprogramming software for network storage devices Zyxel NAS326 and NAS542 allows a intruder to execute arbitrary code.

The vulnerability of the Remotehelp-cgi file in the microprogramming software for network storage devices Zyxel NAS326 and NAS542 exists due to the failure to take measures to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a malicious actor ...

10CVSS6.3AI score0.89218EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2024/06/03 12:0 a.m.4 views

PT-2024-4078 · Zyxel · Zyxel Nas326 +1

Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 versions prior to V5.21AAZF.17C0 Zyxel NAS542 versions prior to V5.21ABAG.14C0 Description: The command injection vulnerability in the setCookie parameter could allow an unauthenticated attacker to execute some operating system O...

9.8CVSS7.5AI score0.86205EPSS
Exploits7References47
Positive Technologies
Positive Technologies
added 2024/06/03 12:0 a.m.6 views

PT-2024-4420 · Zyxel · Zyxel Nas542 +1

Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 versions prior to V5.21AAZF.17C0 Zyxel NAS542 versions prior to V5.21ABAG.14C0 Description: A remote code execution vulnerability exists in the file upload-cgi program. An unauthenticated attacker can execute arbitrary code by...

10CVSS7.9AI score0.22784EPSS
Exploits1References22
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.3 views

PT-2023-7332 · Zyxel · Zyxel Nas326 +1

Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 version V5.21AAZF.14C0 Zyxel NAS542 version V5.21ABAG.11C0 Description: A command injection issue exists in the web server of the Zyxel NAS326 and NAS542 firmware due to the lack of neutralization of special elements used in...

10CVSS9.9AI score0.41348EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2023/11/30 12:0 a.m.7 views

PT-2023-7313 · Zyxel · Zyxel Nas326 +1

Name of the Vulnerable Software and Affected Versions: Zyxel NAS326 version V5.21AAZF.14C0 Zyxel NAS542 version V5.21ABAG.11C0 Description: A command injection issue exists in the show zysync server contents function, allowing an unauthenticated attacker to execute some operating system commands ...

10CVSS9.9AI score0.39998EPSS
Exploits0References8
Rows per page
Query Builder