Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-27992
The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.14)C0, NAS540 firmware versions prior to V5.21(AATB.11)C0, and NAS542 firmware versions prior to V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to exec...
Zyxel Nas326 Firmware
Zyxel Nas540 Firmware
Zyxel Nas542 Firmware
6.2
CVSSv3
CVE-2022-0823
An improper control of interaction frequency vulnerability in Zyxel GS1200 series switches could allow a local malicious user to guess the password by using a timing side-channel attack.
Zyxel Gs1200-5 Firmware
Zyxel Gs1200-5hp Firmware
Zyxel Gs1200-8 Firmware
Zyxel Gs1200-8hp Firmware
9.1
CVSSv3
CVE-2020-28899
The Web CGI Script on ZyXEL LTE4506-M606 V1.00(ABDO.2)C0 devices does not require authentication, which allows remote unauthenticated attackers (via crafted JSON action data to /cgi-bin/gui.cgi) to use all features provided by the router. Examples: change the router password, ret...
Zyxel Lte4506-m606 Firmware
Zyxel Lte7460-m608 Firmware
Zyxel Wah7706 Firmware
NA
CVE-2008-1257
Cross-site scripting (XSS) vulnerability in Forms/DiagGeneral_2 on the ZyXEL P-660HW series router allows remote malicious users to inject arbitrary web script or HTML via the PingIPAddr parameter.
Zyxel P-660hw T3 -
Zyxel P-660hw T1
Zyxel P-660hw D3 -
Zyxel P-660hw D1 -
Zyxel P-660hw T3 V2
Zyxel P-660hw D1 V2
6.5
CVSSv3
CVE-2023-28768
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30 firmware version V4.80(ACAR.1), and XS1930-10 firmware version V4.80(ABQE.1) could allow an unauthenticated LAN-based malicious user to cause denial-of-service (DoS) conditions by sending c...
Zyxel Xgs2220-30 Firmware 4.80\\(abxn.1\\)
Zyxel Xgs2220-30f Firmware 4.80\\(abye.1\\)
Zyxel Xgs2220-30hp Firmware 4.80\\(abxo.1\\)
Zyxel Xgs2220-54 Firmware 4.80\\(abxp.1\\)
Zyxel Xgs2220-54fp Firmware 4.80\\(acce.1\\)
Zyxel Xgs2220-54hp Firmware 4.80\\(abxq.1\\)
Zyxel Xmg1930-30 Firmware 4.80\\(acar.1\\)
Zyxel Xmg1930-30hp Firmware 4.80\\(acas.1\\)
Zyxel Xs1930-10 Firmware 4.80\\(abqe.1\\)
Zyxel Xs1930-12f Firmware 4.80\\(abzv.1\\)
Zyxel Xs1930-12hp Firmware 4.80\\(abqf.1\\)
8.8
CVSSv3
CVE-2023-37927
The improper neutralization of special elements in the CGI program of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an authenticated malicious user to execute some operating system (OS) commands by sending a crafted UR...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
8.8
CVSSv3
CVE-2023-37928
A post-authentication command injection vulnerability in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an authenticated malicious user to execute some operating system (OS) commands by sending a craf...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4473
A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted URL to a vulner...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
9.8
CVSSv3
CVE-2023-4474
The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to execute some operating system (OS) commands by sending a crafted ...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
7.5
CVSSv3
CVE-2023-35137
An improper authentication vulnerability in the authentication module of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated malicious user to obtain system information by sending a crafted URL to a vulner...
Zyxel Nas326 Firmware
Zyxel Nas542 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »