Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
NA
CVE-2023-6764
A format string vulnerability in a function of the IPSec VPN feature in Zyxel ATP series firmware versions from 4.32 up to and including 5.37 Patch 1, USG FLEX series firmware versions from 4.50 up to and including 5.37 Patch 1, USG FLEX 50(W) series firmware versions from 4.16 ...
6.5
CVSSv3
CVE-2023-6397
A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 up to and including 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 up to and including 5.37 Patch 1 could allow a LAN-based malicious user to cause denial-of-service (DoS) cond...
7.2
CVSSv3
CVE-2023-6398
A post-authentication command injection vulnerability in the file upload binary in Zyxel ATP series firmware versions from 4.32 up to and including 5.37 Patch 1, USG FLEX series firmware versions from 4.50 up to and including 5.37 Patch 1, USG FLEX 50(W) series firmware versions ...
5.7
CVSSv3
CVE-2023-6399
A format string vulnerability in Zyxel ATP series firmware versions from 4.32 up to and including 5.37 Patch 1, USG FLEX series firmware versions from 4.50 up to and including 5.37 Patch 1, USG FLEX 50(W) series firmware versions from 4.16 up to and including 5.37 Patch 1, USG20(...
7.2
CVSSv3
CVE-2023-5372
The post-authentication command injection vulnerability in Zyxel NAS326 firmware versions through V5.21(AAZF.15)C0 and NAS542 firmware versions through V5.21(ABAG.12)C0 could allow an authenticated attacker with administrator privileges to execute some operating system (OS) comma...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
8.8
CVSSv3
CVE-2023-37927
The improper neutralization of special elements in the CGI program of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an authenticated malicious user to execute some operating system (OS) commands by sending a crafted UR...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4474
The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted ...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4473
A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted URL to a vulner...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
8.8
CVSSv3
CVE-2023-37928
A post-authentication command injection vulnerability in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an authenticated malicious user to execute some operating system (OS) commands by sending a craf...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »