Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2017-7964
Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote malicious users to conduct DNS hijacking attacks by reconfiguring the built-in dnshijacker process.
Zyxel Wre6505 Firmware
9.8
CVSSv3
CVE-2023-4473
A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted URL to a vulner...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4474
The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted ...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-35138
A command injection vulnerability in the “show_zysync_server_contents” function of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) comma...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-27992
The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.14)C0, NAS540 firmware versions prior to V5.21(AATB.11)C0, and NAS542 firmware versions prior to V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to exec...
Zyxel Nas326 Firmware
Zyxel Nas540 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-33009
A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions 4.60 up to and including 5.36 Patch 1, USG FLEX series firmware versions 4.60 up to and including 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.60 up to and including 5.36 Patch ...
Zyxel Atp100 Firmware
Zyxel Atp100 Firmware 5.36
Zyxel Atp200 Firmware
Zyxel Atp200 Firmware 5.36
Zyxel Atp500 Firmware
Zyxel Atp500 Firmware 5.36
Zyxel Atp100w Firmware
Zyxel Atp100w Firmware 5.36
Zyxel Atp700 Firmware
Zyxel Atp700 Firmware 5.36
Zyxel Atp800 Firmware
Zyxel Atp800 Firmware 5.36
Zyxel Usg Flex 100 Firmware
Zyxel Usg Flex 100 Firmware 5.36
Zyxel Usg Flex 50 Firmware
Zyxel Usg Flex 50 Firmware 5.36
Zyxel Usg Flex 200 Firmware
Zyxel Usg Flex 200 Firmware 5.36
Zyxel Usg Flex 500 Firmware
Zyxel Usg Flex 500 Firmware 5.36
Zyxel Usg Flex 700 Firmware
Zyxel Usg Flex 700 Firmware 5.36
9.8
CVSSv3
CVE-2023-33010
A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 up to and including 5.36 Patch 1, USG FLEX series firmware versions 4.50 up to and including 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 up to and including 5.36 Patch...
Zyxel Atp100 Firmware
Zyxel Atp100 Firmware 5.36
Zyxel Atp200 Firmware
Zyxel Atp200 Firmware 5.36
Zyxel Atp500 Firmware
Zyxel Atp500 Firmware 5.36
Zyxel Atp100w Firmware
Zyxel Atp100w Firmware 5.36
Zyxel Atp700 Firmware
Zyxel Atp700 Firmware 5.36
Zyxel Atp800 Firmware
Zyxel Atp800 Firmware 5.36
Zyxel Usg Flex 100 Firmware
Zyxel Usg Flex 100 Firmware 5.36
Zyxel Usg Flex 50 Firmware 5.36
Zyxel Usg Flex 200 Firmware
Zyxel Usg Flex 200 Firmware 5.36
Zyxel Usg Flex 500 Firmware
Zyxel Usg Flex 500 Firmware 5.36
Zyxel Usg Flex 700 Firmware
Zyxel Usg Flex 700 Firmware 5.36
Zyxel Usg Flex 100w Firmware 5.36
9.8
CVSSv3
CVE-2023-28769
The buffer overflow vulnerability in the library “libclinkc.so” of the web server “zhttpd” in Zyxel DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0 could allow a remote unauthenticated malicious user to execute some OS commands or to cause denial-of-s...
Zyxel Dx5401-b0 Firmware
9.8
CVSSv3
CVE-2023-28771
Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 up to and including 4.73, VPN series firmware versions 4.60 up to and including 5.35, USG FLEX series firmware versions 4.60 up to and including 5.35, and ATP series firmware versions 4.60 up to and...
Zyxel Atp100 Firmware
Zyxel Atp100w Firmware
Zyxel Atp200 Firmware
Zyxel Atp500 Firmware
Zyxel Atp700 Firmware
Zyxel Atp800 Firmware
Zyxel Usg Flex 100 Firmware
Zyxel Usg Flex 100w Firmware
Zyxel Usg Flex 200 Firmware
Zyxel Usg Flex 50 Firmware
Zyxel Usg Flex 500 Firmware
Zyxel Usg Flex 50w Firmware
Zyxel Usg Flex 700 Firmware
Zyxel Vpn100 Firmware
Zyxel Vpn1000 Firmware
Zyxel Vpn300 Firmware
Zyxel Vpn50 Firmware
Zyxel Zywall Usg 310 Firmware
Zyxel Zywall Usg 310 Firmware 4.73
Zyxel Zywall Usg 100 Firmware
Zyxel Zywall Usg 100 Firmware 4.73
1 Github repository
1 Article
9.8
CVSSv3
CVE-2023-22920
A security misconfiguration vulnerability exists in the Zyxel LTE3316-M604 firmware version V2.00(ABMP.6)C0 due to a factory default misconfiguration intended for testing purposes. A remote attacker could leverage this vulnerability to access an affected device using Telnet.
Zyxel Lte3202-m437 Firmware 1.00\\(abwf.1\\)c0
Zyxel Lte3316-m604 Firmware 2.00\\(abmp.6\\)c0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »