Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2017-7964
Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote malicious users to conduct DNS hijacking attacks by reconfiguring the built-in dnshijacker process.
Zyxel Wre6505 Firmware
9.8
CVSSv3
CVE-2024-29972
** UNSUPPORTED WHEN ASSIGNED ** The command injection vulnerability in the CGI program "remote_help-cgi" in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated malicious user to execu...
2 Articles
9.8
CVSSv3
CVE-2024-29973
** UNSUPPORTED WHEN ASSIGNED ** The command injection vulnerability in the “setCookie” parameter in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated malicious user to execute som...
2 Articles
9.8
CVSSv3
CVE-2024-29974
** UNSUPPORTED WHEN ASSIGNED ** The remote code execution vulnerability in the CGI program “file_upload-cgi” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated malicious user to...
2 Articles
9.8
CVSSv3
CVE-2023-35138
A command injection vulnerability in the “show_zysync_server_contents” function of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) comma...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4473
A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted URL to a vulner...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4474
The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted ...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-27992
The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.14)C0, NAS540 firmware versions prior to V5.21(AATB.11)C0, and NAS542 firmware versions prior to V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to exec...
Zyxel Nas326 Firmware
Zyxel Nas540 Firmware
Zyxel Nas542 Firmware
1 Article
9.8
CVSSv3
CVE-2023-33009
A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions 4.60 up to and including 5.36 Patch 1, USG FLEX series firmware versions 4.60 up to and including 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.60 up to and including 5.36 Patch ...
Zyxel Atp100 Firmware
Zyxel Atp100 Firmware 5.36
Zyxel Atp200 Firmware
Zyxel Atp200 Firmware 5.36
Zyxel Atp500 Firmware
Zyxel Atp500 Firmware 5.36
Zyxel Atp100w Firmware
Zyxel Atp100w Firmware 5.36
Zyxel Atp700 Firmware
Zyxel Atp700 Firmware 5.36
Zyxel Atp800 Firmware
Zyxel Atp800 Firmware 5.36
Zyxel Usg Flex 100 Firmware
Zyxel Usg Flex 100 Firmware 5.36
Zyxel Usg Flex 50 Firmware
Zyxel Usg Flex 50 Firmware 5.36
Zyxel Usg Flex 200 Firmware
Zyxel Usg Flex 200 Firmware 5.36
Zyxel Usg Flex 500 Firmware
Zyxel Usg Flex 500 Firmware 5.36
Zyxel Usg Flex 700 Firmware
Zyxel Usg Flex 700 Firmware 5.36
9.8
CVSSv3
CVE-2023-33010
A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 up to and including 5.36 Patch 1, USG FLEX series firmware versions 4.50 up to and including 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 up to and including 5.36 Patch...
Zyxel Atp100 Firmware
Zyxel Atp100 Firmware 5.36
Zyxel Atp200 Firmware
Zyxel Atp200 Firmware 5.36
Zyxel Atp500 Firmware
Zyxel Atp500 Firmware 5.36
Zyxel Atp100w Firmware
Zyxel Atp100w Firmware 5.36
Zyxel Atp700 Firmware
Zyxel Atp700 Firmware 5.36
Zyxel Atp800 Firmware
Zyxel Atp800 Firmware 5.36
Zyxel Usg Flex 100 Firmware
Zyxel Usg Flex 100 Firmware 5.36
Zyxel Usg Flex 50 Firmware 5.36
Zyxel Usg Flex 200 Firmware
Zyxel Usg Flex 200 Firmware 5.36
Zyxel Usg Flex 500 Firmware
Zyxel Usg Flex 500 Firmware 5.36
Zyxel Usg Flex 700 Firmware
Zyxel Usg Flex 700 Firmware 5.36
Zyxel Usg Flex 100w Firmware 5.36
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »