Multiple cross-site request forgery (CSRF) vulnerabilities in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allow remote malicious users to perform certain actions as administrators, as demonstrated by a request to Forms/General_1 with the (1) sysSystemName and (2) sysDomainName parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zyxel zynos 3.62 |
||
zyxel zywall 2 |