Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel zywall 2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4316
The management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device has a certain default password, which allows remote malicious users to perform administrative actions.
Zyxel Zywall 2
Zyxel Zynos 3.62
NA
CVE-2007-4317
Multiple cross-site request forgery (CSRF) vulnerabilities in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allow remote malicious users to perform certain actions as administrators, as demonstrated by a request to Forms/General_1 with the (1)...
Zyxel Zynos 3.62
Zyxel Zywall 2
NA
CVE-2007-4318
Cross-site scripting (XSS) vulnerability in Forms/General_1 in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to inject arbitrary web script or HTML via the sysSystemName parameter.
Zyxel Zynos 3.62
Zyxel Zywall 2
1 EDB exploit
NA
CVE-2007-4319
The management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to cause a denial of service (infinite reboot loop) via invalid configuration data. NOTE: this issue might not cross privilege boundaries, and it might be...
Zyxel Zynos 3.62
Zyxel Zywall 2
8.8
CVSSv3
CVE-2017-17550
ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected by a CSRF vulnerability via a cgi-bin/zysh-cgi cmd action to add a user account. This account's access could, for example, subsequently be used for stored XSS.
Zyxel Zywall Usg 100 Firmware 2.12\\(aqq.2\\)
Zyxel Zywall Usg 100 Firmware 3.30\\(aqq.7\\)
6.1
CVSSv3
CVE-2021-46387
ZyXEL ZyWALL 2 Plus Internet Security Appliance is affected by Cross Site Scripting (XSS). Insecure URI handling leads to bypass security restriction to achieve Cross Site Scripting, which allows an attacker able to execute arbitrary JavaScript codes to perform multiple attacks s...
Zyxel Zywall 2 Plus Internet Security Appliance Firmware -
7.8
CVSSv3
CVE-2022-26531
Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 up to and including 4.71, USG FLEX series firmware versions 4.50 up to and including 5.21, ATP series firmware versions 4.32 up to and including 5.21, V...
Zyxel Vpn100 Firmware
Zyxel Vpn1000 Firmware
Zyxel Vpn300 Firmware
Zyxel Vpn50 Firmware
Zyxel Atp100 Firmware
Zyxel Atp100w Firmware
Zyxel Atp200 Firmware
Zyxel Atp500 Firmware
Zyxel Atp700 Firmware
Zyxel Atp800 Firmware
Zyxel Usg 110 Firmware
Zyxel Usg 1100 Firmware
Zyxel Usg 1900 Firmware
Zyxel Usg 20w Firmware
Zyxel Usg 20w-vpn Firmware
Zyxel Usg 2200-vpn Firmware
Zyxel Usg 310 Firmware
Zyxel Usg 40 Firmware
Zyxel Usg 40w Firmware
Zyxel Usg 60 Firmware
Zyxel Usg 60w Firmware
Zyxel Usg Flex 100 Firmware
7.8
CVSSv3
CVE-2022-26532
A argument injection vulnerability in the 'packet-trace' CLI command of Zyxel USG/ZyWALL series firmware versions 4.09 up to and including 4.71, USG FLEX series firmware versions 4.50 up to and including 5.21, ATP series firmware versions 4.32 up to and including 5.21, ...
Zyxel Vpn100 Firmware
Zyxel Vpn1000 Firmware
Zyxel Vpn300 Firmware
Zyxel Vpn50 Firmware
Zyxel Atp100 Firmware
Zyxel Atp100w Firmware
Zyxel Atp200 Firmware
Zyxel Atp500 Firmware
Zyxel Atp700 Firmware
Zyxel Atp800 Firmware
Zyxel Usg 110 Firmware
Zyxel Usg 1100 Firmware
Zyxel Usg 1900 Firmware
Zyxel Usg 20w Firmware
Zyxel Usg 20w-vpn Firmware
Zyxel Usg 2200-vpn Firmware
Zyxel Usg 310 Firmware
Zyxel Usg 40 Firmware
Zyxel Usg 40w Firmware
Zyxel Usg 60 Firmware
Zyxel Usg 60w Firmware
Zyxel Usg Flex 100 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started