Ax7501-b0 Firmware@* Security Vulnerabilities and Issues — Ax7501-b0 Firmware@* CVE List

Lucene search

ZyxelAx7501-b0 Firmware*

9 matches found

CVE•added 2022/04/11 1:15 p.m.•395 views

CVE-2022-26413

A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface.

8CVSS7.9AI score0.00626EPSS

CVE•added 2022/04/11 1:15 p.m.•104 views

CVE-2022-26414

A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.

6CVSS6.1AI score0.00038EPSS

CVE•added 2022/03/01 7:15 a.m.•81 views

CVE-2021-35036

A cleartext storage of information vulnerability in the Zyxel VMG3625-T50B firmware version V5.50(ABTL.0)b2k could allow an authenticated attacker to obtain sensitive information from the configuration file.

6.5CVSS6.1AI score0.00196EPSS

CVE•added 2024/09/03 2:15 a.m.•71 views

CVE-2024-5412

A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50(ABOM.8)C0 could allow an unauthenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.

7.5CVSS7.5AI score0.00353EPSS

CVE•added 2023/01/17 2:15 a.m.•56 views

CVE-2022-45440

A vulnerability exists in the FTP server of the Zyxel AX7501-B0 firmware prior to V5.17(ABPC.3)C0, which processes symbolic links on external storage media. A local authenticated attacker with administrator privileges could abuse this vulnerability to access the root file system by creating a symbo...

4.4CVSS4.5AI score0.00021EPSS

CVE•added 2024/09/24 2:15 a.m.•51 views

CVE-2024-38266

An improper restriction of operations within the bounds of a memory buffer in the parameter type parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause potential memory corruptions, resulting in a thread...

4.9CVSS7AI score0.00176EPSS

CVE•added 2024/12/03 2:15 a.m.•50 views

CVE-2024-8748

A buffer overflow vulnerability in the packet parser of the third-party library "libclinkc" in Zyxel VMG8825-T50K firmware versions through V5.50(ABOM.8.4)C0 could allow an attacker to cause a temporary denial of service (DoS) condition against the web management interface by sending a crafted HTTP...

7.5CVSS7.3AI score0.00139EPSS

CVE•added 2023/01/17 2:15 a.m.•49 views

CVE-2022-45439

A pair of spare WiFi credentials is stored in the configuration file of the Zyxel AX7501-B0 firmware prior to V5.17(ABPC.3)C0 in cleartext. An unauthenticated attacker could use the credentials to access the WLAN service if the configuration file has been retrieved from the device by leveraging ano...

6.5CVSS6.4AI score0.00069EPSS

CVE•added 2024/12/03 2:15 a.m.•42 views

CVE-2024-9197

A post-authentication buffer overflow vulnerability in the parameter "action" of the CGI program in Zyxel VMG3625-T50B firmware versions through V5.50(ABPM.9.2)C0 could allow an authenticated attacker with administrator privileges to cause a temporary denial of service (DoS) condition against the w...

4.9CVSS7.2AI score0.00106EPSS