A plaintext password vulnerability in the Zyxel NAS 326 up to and including 5.21 allows an elevated privileged user to get the admin password of the device.
zyxel nas326_firmware