Lucene search
K

8 matches found

NVD
NVD
added 2014/04/15 10:55 a.m.27 views

CVE-2014-0356

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 allows remote attackers to execute arbitrary code via shell metacharacters in input to the 1 detectWeather, 2 setlanguage, 3 SystemCommand, or 4 NTPSyncWithHost function in management.c, or a 5 SET COUNTRY, 6 SET WLAN SSID, ...

7.9CVSS7.8AI score0.01146EPSS
Exploits0References1
NVD
NVD
added 2014/04/15 10:55 a.m.19 views

CVE-2014-0354

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 has a hardcoded password of qweasdzxc for an unspecified account, which allows remote attackers to obtain index.asp login access via an HTTP request...

7.8CVSS7AI score0.00757EPSS
Exploits0References1
Prion
Prion
added 2014/04/15 10:55 a.m.18 views

Command injection

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 allows remote attackers to execute arbitrary code via shell metacharacters in input to the 1 detectWeather, 2 setlanguage, 3 SystemCommand, or 4 NTPSyncWithHost function in management.c, or a 5 SET COUNTRY, 6 SET WLAN SSID, ...

7.9CVSS8.4AI score0.01146EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2014/04/15 10:0 a.m.44 views

CVE-2014-0354

The CVE-2014-0354 entry concerns ZyXEL Wireless N300 NetUSB NBG-419N routers with firmware 1.00(BFQ.6)C0 that have a hardcoded password (qweasdzxc) used to login to index.asp via HTTP, enabling a remote attacker on the LAN to obtain login access. The linked NVD record confirms the issue and its i...

7.8CVSS7.2AI score0.00757EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2014/04/15 10:0 a.m.42 views

CVE-2014-0355

CVE-2014-0355 affects ZyXEL Wireless N300 NetUSB Router NBG-419N (firmware 1.00(BFQ.6)C0). The checkWeather function parses forecastrss and is vulnerable to a stack-based buffer overflow; WeatherCity/WeatherDegree variables in detectWeather are vulnerable to overflow; UpnpAddRunRLQoS, UpnpDeleteR...

7.9CVSS7.9AI score0.00612EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2014/04/15 10:0 a.m.41 views

CVE-2014-0353

The ZyXEL Wireless N300 NetUSB NBG-419N router (firmware 1.00(BFQ.6)C0) is affected by CVE-2014-0353: remote attackers can bypass authentication by escaping the "/" path separator with %2F in URLs, allowing access to subdirectory content. Root cause: improper handling of URL encoding for slashes ...

6.1CVSS7.3AI score0.00864EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2014/04/15 10:0 a.m.24 views

CVE-2014-0354

The ZyXEL Wireless N300 NetUSB NBG-419N router with firmware 1.00BFQ.6C0 has a hardcoded password of qweasdzxc for an unspecified account, which allows remote attackers to obtain index.asp login access via an HTTP request...

7AI score0.00757EPSS
Exploits0References1
CERT
CERT
added 2014/04/11 12:0 a.m.56 views

ZyXEL Wireless N300 NetUSB Router NBG-419N devices contain multiple vulnerabilities

Overview ZyXEL Wireless N300 NetUSB Router NBG-419N running firmware version 1.00BFQ.6C0, and possibly earlier versions, is susceptible to multiple vulnerabilities. Other device models that use similar firmware may also be vulnerable. Description ZyXEL Wireless N300 NetUSB Router NBG-419N running...

7.9CVSS8.2AI score0.01146EPSS
Exploits0References5
Rows per page
Query Builder