Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2020-24354
Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by shell injection.
Zyxel Vmg5313-b30b Firmware
6.5
CVSSv2
CVE-2019-10631
Shell Metacharacter Injection in the package installer on Zyxel NAS 326 version 5.21 and below allows an authenticated malicious user to execute arbitrary code via multiple different requests.
Zyxel Nas326 Firmware
6.5
CVSSv2
CVE-2019-10633
An eval injection vulnerability in the Python web server routing on the Zyxel NAS 326 version 5.21 and below allows a remote authenticated malicious user to execute arbitrary code via the tjp6jp6y4, simZysh, and ck6fup6 APIs.
Zyxel Nas326 Firmware
6.5
CVSSv2
CVE-2008-1521
ZyXEL Prestige routers, including P-660 and P-661 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), allow remote authenticated users to gain privileges by accessing administrative URIs, as demonstrated by rpSysAdmin.html.
Zyxel Zynos 3.40
Zyxel Prestige 661 Hw-d1
Zyxel Prestige 660 H-d3
Zyxel Prestige 660 H-d1
6.4
CVSSv2
CVE-2021-35034
An insufficient session expiration vulnerability in the CGI program of the Zyxel NBG6604 firmware could allow a remote malicious user to access the device if the correct token can be intercepted.
Zyxel Nbg6604 Firmware
6.4
CVSSv2
CVE-2020-28899
The Web CGI Script on ZyXEL LTE4506-M606 V1.00(ABDO.2)C0 devices does not require authentication, which allows remote unauthenticated attackers (via crafted JSON action data to /cgi-bin/gui.cgi) to use all features provided by the router. Examples: change the router password, ret...
Zyxel Lte4506-m606 Firmware
Zyxel Lte7460-m608 Firmware
Zyxel Wah7706 Firmware
6.4
CVSSv2
CVE-2019-15803
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. Through an undocumented sequence of keypresses, undocumented functionality is triggered. A diagnostics shell is triggered via CTRL-ALT-t, which prompts for the password returned by fds_sys_passDebugPas...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
6.4
CVSSv2
CVE-2019-12583
Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote malicious user to generate guest accounts by directly accessing the account generator. This can lead to unauthorised network access or Denial of Service.
Zyxel Uag2100 Firmware
Zyxel Uag4100 Firmware
Zyxel Uag5100 Firmware
Zyxel Usg110 Firmware
Zyxel Usg210 Firmware
Zyxel Usg310 Firmware
Zyxel Usg1100 Firmware
Zyxel Usg1900 Firmware
Zyxel Usg2200-vpn Firmware
Zyxel Zywall Vpn100 Firmware
Zyxel Zywall Vpn300 Firmware
Zyxel Zywall 110 Firmware
Zyxel Zywall 310 Firmware
Zyxel Zywall 1100 Firmware
6.4
CVSSv2
CVE-2005-3725
Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 uses hardcoded IP addresses for its DNS servers, which could allow remote malicious users to cause a denial of service or hijack Zyxel phones by attacking or spoofing the hardcoded DNS servers. NOTE: it could be argued that this iss...
Zyxel Prestige 2000w V.1voip Wi-fi Phone Wj.00.10
6.4
CVSSv2
CVE-2005-3724
Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 allows remote malicious users to obtain sensitive information and possibly cause a denial of service via a direct connection to UDP port 9090, which is undocumented and does not require authentication.
Zyxel Prestige 2000w V.1voip Wi-fi Phone Wj.00.10
Zyxel P2000w Version 1 Voip Wifi Phone Wj.00.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »