Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zynos firmware vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4316
The management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device has a certain default password, which allows remote malicious users to perform administrative actions.
Zyxel Zywall 2
Zyxel Zynos 3.62
NA
CVE-2007-4318
Cross-site scripting (XSS) vulnerability in Forms/General_1 in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to inject arbitrary web script or HTML via the sysSystemName parameter.
Zyxel Zynos 3.62
Zyxel Zywall 2
1 EDB exploit
NA
CVE-2007-4317
Multiple cross-site request forgery (CSRF) vulnerabilities in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allow remote malicious users to perform certain actions as administrators, as demonstrated by a request to Forms/General_1 with the (1)...
Zyxel Zynos 3.62
Zyxel Zywall 2
NA
CVE-2007-4319
The management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to cause a denial of service (infinite reboot loop) via invalid configuration data. NOTE: this issue might not cross privilege boundaries, and it might be...
Zyxel Zynos 3.62
Zyxel Zywall 2
NA
CVE-2008-1521
ZyXEL Prestige routers, including P-660 and P-661 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), allow remote authenticated users to gain privileges by accessing administrative URIs, as demonstrated by rpSysAdmin.html.
Zyxel Zynos 3.40
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Prestige 661 Hw-d1
NA
CVE-2008-1525
The default SNMP configuration on ZyXEL Prestige routers, including P-660 and P-661 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), has a Trusted Host value of 0.0.0.0, which allows remote malicious users to send SNMP requests from any source IP address.
Zyxel Prestige 660 H-d3
Zyxel Prestige 661 Hw-d1
Zyxel Zynos 3.40
Zyxel Prestige 660 H-d1
NA
CVE-2008-1527
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(PE9) and 3.40(AGD.2) up to and including 3.40(AHQ.3), support authentication over HTTP via a hash string in the hiddenPassword field, which allows remote malicious users to obtain access via a rep...
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Zynos 3.40
Zyxel Prestige 661 Hw-d1
NA
CVE-2008-1522
ZyXEL Prestige routers, including P-660 and P-661 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), have (1) "user" as their default password for the "user" account and (2) "1234" as their default password for the "admin" ac...
Zyxel Zynos 3.40
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Prestige 661 Hw-d1
NA
CVE-2008-1523
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), allow remote authenticated users to obtain ISP and Dynamic DNS credentials by sending a direct request for (1) WAN.html, (2) wzPPPOE.html, and (3) rpDyDNS.h...
Zyxel Zynos 3.40
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Prestige 661 Hw-d1
NA
CVE-2008-1528
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), allow remote authenticated users to obtain authentication data by making direct HTTP requests and then reading the HTML source, as demonstrated by a request...
Zyxel Prestige 661 Hw-d1
Zyxel Zynos 3.40
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »