Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-17354
wan.htm page on Zyxel NBG-418N v2 with firmware version V1.00(AARP.9)C0 can be accessed directly without authentication, which can lead to disclosure of information about the WAN, and can also be leveraged by an malicious user to modify data fields of the page.
Zyxel Nbg-418n V2 Firmware 1.00\\(aarp.9\\)c0
7.5
CVSSv2
CVE-2017-18371
The ZyXEL P660HN-T1A v2 TCLinux Fw #7.3.37.6 router distributed by TrueOnline has three user accounts with default passwords, including two hardcoded service accounts: one with the username true and password true, and another with the username supervisor and password zyad1234. Th...
Billion 5200w-t Firmware 7.3.8.0
Zyxel P660hn-t1a V2 Firmware 7.3.37.6
Zyxel P660hn-t1a V1 Firmware 7.3.37.6
7.5
CVSSv2
CVE-2017-15226
Zyxel NBG6716 V1.00(AAKG.9)C0 devices allow command injection in the ozkerz component because beginIndex and endIndex are used directly in a popen call.
Zyxel Nbg6716 Firmware 1.00\\(aakg.9\\)c0
7.5
CVSSv2
CVE-2011-4504
The UPnP IGD implementation in the Pseudo ICS UPnP software on the ZyXEL P-330W allows remote malicious users to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnera...
Genmei Mori Pseudoics 0.3
Genmei Mori Pseudoics 0.2
Genmei Mori Pseudoics 0.1
Zyxel P-330w Router
7.5
CVSSv2
CVE-2008-1522
ZyXEL Prestige routers, including P-660 and P-661 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), have (1) "user" as their default password for the "user" account and (2) "1234" as their default password for the "admin" ac...
Zyxel Zynos 3.40
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Prestige 661 Hw-d1
7.5
CVSSv2
CVE-2008-1524
The SNMP service on ZyXEL Prestige routers, including P-660 and P-661 models with firmware 3.40(AGD.2) up to and including 3.40(AHQ.3), has "public" as its default community for both (1) read and (2) write operations, which allows remote malicious users to perform admin...
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Zynos 3.40
Zyxel Prestige 661 Hw-d1
7.5
CVSSv2
CVE-2008-1527
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(PE9) and 3.40(AGD.2) up to and including 3.40(AHQ.3), support authentication over HTTP via a hash string in the hiddenPassword field, which allows remote malicious users to obtain access via a rep...
Zyxel Prestige 660 H-d1
Zyxel Prestige 660 H-d3
Zyxel Zynos 3.40
Zyxel Prestige 661 Hw-d1
7.5
CVSSv2
CVE-2008-1160
ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is not changed when it is set by a user, which allows remote malicious users to gain privileges.
Zyxel Zywall 1050 Firmware -
1 EDB exploit
7.5
CVSSv2
CVE-2006-2562
ZyXEL P-335WT router allows remote malicious users to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.
Zyxel P-335wt Router
7.5
CVSSv2
CVE-2001-1135
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.
Zyxel Prestige 642r
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »