CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

279 matches found

ATTACKERKB•added 2026/02/05 1:55 a.m.•3 views

CVE-2025-11730

A post‑authentication command injection vulnerability in the Dynamic DNS DDNS configuration CLI command in Zyxel ATP series firmware versions from V5.35 through V5.41, USG FLEX series firmware versions from V5.35 through V5.41, USG FLEX 50W series firmware versions from V5.35 through V5.41, and...

7.2CVSS5.7AI score0.00102EPSS

Exploits0References2Affected Software4

RedhatCVE•added 2026/01/07 9:17 a.m.•5 views

CVE-2025-1732

An improper privilege management vulnerability in the recovery function of the Zyxel USG FLEX H series uOS firmware version V1.31 and earlier could allow an authenticated local attacker with administrator privileges to upload a crafted configuration file and escalate privileges on a vulnerable...

6.7CVSS6.5AI score0.00076EPSS

Exploits2References1

RedhatCVE•added 2026/01/07 9:12 a.m.•14 views

CVE-2025-1731

An incorrect permission assignment vulnerability in the PostgreSQL commands of the Zyxel USG FLEX H series uOS firmware versions from V1.20 through V1.31 could allow an authenticated local attacker with low privileges to gain access to the Linux shell and escalate their privileges by crafting...

7.8CVSS7.7AI score0.00349EPSS

Exploits2References1

RedhatCVE•added 2025/10/22 2:9 a.m.•1 views

CVE-2025-9133

A missing authorization vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.40, USG FLEX series firmware versions from V4.50 through V5.40, USG FLEX 50W series firmware versions from V4.16 through V5.40, and USG20W-VPN series firmware versions from V4.16 through V5.40 could...

8.1CVSS6.9AI score0.00047EPSS

Exploits0References1

NVD•added 2025/10/21 3:15 a.m.•2 views

CVE-2025-9133

8.1CVSS0.00047EPSS

Exploits0References1

Vulnrichment•added 2025/10/21 1:57 a.m.•4 views

CVE-2025-9133

8.1CVSS6.7AI score0.00047EPSS

Exploits0References1

CVE•added 2025/10/21 1:57 a.m.•10 views

CVE-2025-9133

Summary of CVE-2025-9133 (Zyxel devices) Technical details in the connected PT-2025-42828 entry show a missing authorization flaw in Zyxel ATP series, Zyxel USG FLEX series, and Zyxel USG20(W)-VPN devices. The vulnerability arises from insufficient input validation/logic in the CGI interface, spe...

8.1CVSS6.7AI score0.00047EPSS

Exploits0References1Affected Software1

CVE•added 2025/10/21 1:49 a.m.•13 views

CVE-2025-8078

CVE-2025-8078 describes a post-authentication command-injection vulnerability in Zyxel devices: Zyxel ATP series firmware v4.32–v5.40, USG FLEX series v4.50–v5.40, USG FLEX 50(W) series v4.16–v5.40, and USG20(W)-VPN series v4.16–v5.40. An authenticated administrator can pass a crafted string as a...

7.2CVSS7.2AI score0.00089EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/10/21 1:49 a.m.•2 views

CVE-2025-8078

A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.40, USG FLEX series firmware versions from V4.50 through V5.40, USG FLEX 50W series firmware versions from V4.16 through V5.40, and USG20W-VPN series firmware versions from V4.16...

7.2CVSS7.2AI score0.00089EPSS

Exploits0References1

Cvelist•added 2025/10/21 1:49 a.m.•7 views

CVE-2025-8078

7.2CVSS0.00089EPSS

Exploits0References1

Positive Technologies•added 2025/10/21 12:0 a.m.•2 views

PT-2025-42828

Name of the Vulnerable Software and Affected Versions Zyxel ATP series versions V4.32 through V5.40 Zyxel USG FLEX series versions V4.50 through V5.40 Zyxel USG FLEX 50W series versions V4.16 through V5.40 Zyxel USG20W-VPN series versions V4.16 through V5.40 Description A missing authorization fl...

8.1CVSS9.5AI score0.00047EPSS

Exploits0References15

VulnCheck KEV•added 2025/10/17 12:0 a.m.•16 views

VulnCheck KEV: CVE-2022-0342

An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.20 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.32 through 5.20, VPN series firmware versions 4.30 through 5.20, and NSG series firmware...

9.8CVSS5.8AI score0.92364EPSS

In wildExploits0References30