Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel p-660hw firmware - vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2015-6017
Multiple cross-site scripting (XSS) vulnerabilities in Forms/rpAuth_1 on ZyXEL P-660HW-T1 2 devices with ZyNOS firmware 3.40(AXH.0) allow remote malicious users to inject arbitrary web script or HTML via the (1) LoginPassword or (2) hiddenPassword parameter.
Zyxel P-660hw-t1 V2 Firmware 3.40\\(axh.0\\)
9.8
CVSSv3
CVE-2015-6016
ZyXEL P-660HW-T1 2 devices with ZyNOS firmware 3.40(AXH.0), PMG5318-B20A devices with firmware 1.00AANC0b5, and NBG-418N devices have a default password of 1234 for the admin account, which allows remote malicious users to obtain administrative access via unspecified vectors.
Zyxel Nbg-418n -
Zyxel Zynos Firmware 3.40\\(axh.0\\)
Zyxel Pmg5318-b20a Firmware V100aanc0b5
8.5
CVSSv3
CVE-2015-6019
The management portal on ZyXEL PMG5318-B20A devices with firmware 1.00AANC0b5 does not terminate sessions upon a logout action, which allows remote malicious users to bypass intended access restrictions by leveraging an unattended workstation.
Zyxel Pmg5318-b20a Firmware V100aanc0b5
8
CVSSv3
CVE-2015-6020
ZyXEL PMG5318-B20A devices with firmware 1.00AANC0b5 allow remote authenticated users to obtain administrative privileges by leveraging access to the user account.
Zyxel Pmg5318-b20a Firmware V100aanc0b5
9.8
CVSSv3
CVE-2015-6018
The diagnostic-ping implementation on ZyXEL PMG5318-B20A devices with firmware prior to 1.00(AANC.2)C0 allows remote malicious users to execute arbitrary commands via the PingIPAddr parameter.
Zyxel Pmg5318-b20a Firmware
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started