16 matches found
EUVD-2021-21674
Malware in sbrugna...
EUVD-2021-21675
Malware in sbrugna...
CVE-2021-35028
A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands...
CVE-2021-35027
A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker to gain access to sensitive information...
The vulnerability of Zyxel VPN2S network interface card’s microprogramming software arises from incorrect pathname restrictions for the restricted access directory. This vulnerability allows attackers to gain access to confidential information.
The vulnerability of Zyxel VPN2S network interface card’s microprogramming software exists due to an incorrect restriction on the path name to the restricted access directory. Exploiting this vulnerability can allow a malicious actor to gain access to confidential information...
The vulnerability of the CGI interface of the ZyWALL VPN2S microprogramming network interface devices allows a intruder to execute arbitrary commands.
The vulnerability of the Common Gateway Interface CGI interface of the ZyWALL VPN2S microprogramming network interface devices is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow a hacker to execute...
CVE-2021-35027
A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker to gain access to sensitive information...
CVE-2021-35027
A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker to gain access to sensitive information...
CVE-2021-35028
A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands...
Directory traversal
A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker to gain access to sensitive information...
Command injection
A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands...
CVE-2021-35028
The CVE-2021-35028 issue affects Zyxel VPN2S firmware (version 1.12) via the CGI program. It is a command injection vulnerability that allows an authenticated, local user to execute arbitrary OS commands. The connected documents confirm the affected component and impact but do not provide exploit...
CVE-2021-35028
A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands...
CVE-2021-35027
CVE-2021-35027 affects Zyxel VPN2S firmware version 1.12, where the web server is vulnerable to a directory traversal flaw allowing remote access to sensitive information. The exposure is evidenced by NVD and Red Hat/other records, with CVSSv3.1 base score 7.5 (HIGH) and CVSSv2 base score 5.0 (ME...
CVE-2021-35027
A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker to gain access to sensitive information...
Zyxel Vpn2S 操作系统命令注入漏洞
Zyxel Vpn2S is a reliable and secure Vpn router from China's Heqin Technology Zyxel. The Zyxel VPN2S suffers from an operating system command injection vulnerability that stems from a command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 that could allow an...