A pair of spare WiFi credentials is stored in the configuration file of the Zyxel AX7501-B0 firmware prior to V5.17(ABPC.3)C0 in cleartext. An unauthenticated attacker could use the credentials to access the WLAN service if the configuration file has been retrieved from the device by leveraging another known vulnerability.
A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted HTTP request.
zyxel:ex5501-b0_firmware zyxel:wx3401-b0_firmware zyxel:vmg8825-t50k_firmware zyxel:vmg3927-t50k_firmware zyxel:pmg5617-t20b2_firmware zyxel:ex5600-t1_firmware zyxel:lte7485-s905_firmware zyxel:pmg5617ga_firmware zyxel:vmg4005-b50a_firmware zyxel:nebula_lte3301-plus_firmware zyxel:pm3100-t0_firmware zyxel:nr7102_firmware zyxel:pmg5622ga_firmware zyxel:nebula_nr7101_firmware zyxel:wx3100-t0_firmware zyxel:lte7480-m804_firmware zyxel:ex3510-b0_firmware zyxel:nebula_lte7461-m602_firmware zyxel:lte5398-m904_firmware zyxel:pmg5317-t20b_firmware zyxel:emg3525-t50b_firmware zyxel:ex5512-t0_firmware zyxel:pm5100-t0_firmware zyxel:pm7300-t0_firmware zyxel:nr5101_firmware zyxel:ex5601-t1_firmware zyxel:nr7101_firmware zyxel:lte7461-m602_firmware zyxel:lte7490-m904_firmware zyxel:lte7240-m403_firmware zyxel:dx3301-t0_firmware zyxel:emg5523-t50b_firmware zyxel:ex5401-b0_firmware zyxel:lte3301-plus_firmware zyxel:vmg4005-b60a_firmware zyxel:wx5600-t0_firmware zyxel:ex5601-t0_firmware zyxel:ax7501-b0_firmware zyxel:emg5723-t50k_firmware zyxel:pm7320-b0_firmware zyxel:ex5510-b0_firmware zyxel:dx4510-b1_firmware zyxel:lte5388-m804_firmware zyxel:vmg8623-t50b_firmware zyxel:ex3301-t0_firmware zyxel:dx5401-b0_firmware zyxel:nebula_nr5101_firmware zyxel:lte7480-s905_firmware
A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted authorization request.
zyxel:ex5501-b0_firmware zyxel:wx3401-b0_firmware zyxel:vmg8825-t50k_firmware zyxel:vmg3927-t50k_firmware zyxel:pmg5617-t20b2_firmware zyxel:ex5600-t1_firmware zyxel:lte7485-s905_firmware zyxel:pmg5617ga_firmware zyxel:vmg4005-b50a_firmware zyxel:nebula_lte3301-plus_firmware zyxel:pm3100-t0_firmware zyxel:nr7102_firmware zyxel:pmg5622ga_firmware zyxel:nebula_nr7101_firmware zyxel:wx3100-t0_firmware zyxel:lte7480-m804_firmware zyxel:ex3510-b0_firmware zyxel:nebula_lte7461-m602_firmware zyxel:lte5398-m904_firmware zyxel:pmg5317-t20b_firmware zyxel:emg3525-t50b_firmware zyxel:ex5512-t0_firmware zyxel:pm5100-t0_firmware zyxel:pm7300-t0_firmware zyxel:nr5101_firmware zyxel:ex5601-t1_firmware zyxel:nr7101_firmware zyxel:lte7461-m602_firmware zyxel:lte7490-m904_firmware zyxel:lte7240-m403_firmware zyxel:dx3301-t0_firmware zyxel:emg5523-t50b_firmware zyxel:ex5401-b0_firmware zyxel:lte3301-plus_firmware zyxel:vmg4005-b60a_firmware zyxel:wx5600-t0_firmware zyxel:ex5601-t0_firmware zyxel:ax7501-b0_firmware zyxel:emg5723-t50k_firmware zyxel:pm7320-b0_firmware zyxel:ex5510-b0_firmware zyxel:dx4510-b1_firmware zyxel:lte5388-m804_firmware zyxel:vmg8623-t50b_firmware zyxel:ex3301-t0_firmware zyxel:dx5401-b0_firmware zyxel:nebula_nr5101_firmware zyxel:lte7480-s905_firmware
A command injection vulnerability in the CGI program of Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to execute some OS commands on a vulnerable device by sending a crafted HTTP request.
zyxel:ex5601-t0_firmware zyxel:wx3100-t0_firmware zyxel:emg3525-t50b_firmware zyxel:lte7480-m804_firmware zyxel:nr7101_firmware zyxel:nebula_nr7101_firmware zyxel:wx5600-t0_firmware zyxel:vmg8623-t50b_firmware zyxel:ax7501-b0_firmware zyxel:pm3100-t0_firmware zyxel:vmg4005-b50a_firmware zyxel:ex3301-t0_firmware zyxel:nr5101_firmware zyxel:pm5100-t0_firmware zyxel:emg5723-t50k_firmware zyxel:ex3510-b0_firmware zyxel:ex5510-b0_firmware zyxel:wx3401-b0_firmware zyxel:pmg5617-t20b2_firmware zyxel:ex5401-b0_firmware zyxel:nebula_nr5101_firmware zyxel:vmg4005-b60a_firmware zyxel:dx3301-t0_firmware zyxel:pm7320-b0_firmware zyxel:pmg5617ga_firmware zyxel:lte7490-m904_firmware zyxel:nr7102_firmware zyxel:ex5501-b0_firmware zyxel:dx4510-b1_firmware zyxel:vmg3927-t50k_firmware zyxel:pm7300-t0_firmware zyxel:dx5401-b0_firmware zyxel:emg5523-t50b_firmware zyxel:vmg8825-t50k_firmware zyxel:pmg5317-t20b_firmware zyxel:ex5601-t1_firmware zyxel:ex5600-t1_firmware zyxel:pmg5622ga_firmware zyxel:ex5512-t0_firmware
A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.
zyxel:vmg8825-b60b_firmware zyxel:vmg3312-t20a_firmware zyxel:pmg5617ga_firmware zyxel:pmg5617-t20b2_firmware zyxel:vmg3625-t50b_firmware zyxel:emg5723-t50k_firmware zyxel:emg5523-t50b_firmware zyxel:xmg8825-b50a_firmware zyxel:ex5401-b0_firmware zyxel:emg6726-b10a_firmware zyxel:vmg3927-b50a_firmware zyxel:emg3525-t50b_firmware zyxel:ax7501-b0_firmware zyxel:pm7300-t0_firmware zyxel:vmg3927-b50b_firmware zyxel:vmg8623-t50b_firmware zyxel:ep240p_firmware zyxel:vmg1312-t20b_firmware zyxel:ex3510-b0_firmware zyxel:pmg5317-t20b_firmware zyxel:px7501-b0_firmware zyxel:vmg8825-b50b_firmware zyxel:vmg3927-b60a_firmware zyxel:xmg3927-b50a_firmware zyxel:vmg8825-b60a_firmware zyxel:vmg3927-t50k_firmware zyxel:pmg5622ga_firmware zyxel:dx5401-b0_firmware zyxel:vmg8825-b50a_firmware zyxel:ex5501-b0_firmware zyxel:vmg4927-b50a_firmware zyxel:vmg8825-t50k_firmware
A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface.
zyxel:vmg8825-b60b_firmware zyxel:vmg3312-t20a_firmware zyxel:pmg5617ga_firmware zyxel:pmg5617-t20b2_firmware zyxel:vmg3625-t50b_firmware zyxel:emg5723-t50k_firmware zyxel:emg5523-t50b_firmware zyxel:xmg8825-b50a_firmware zyxel:ex5401-b0_firmware zyxel:emg6726-b10a_firmware zyxel:vmg3927-b50a_firmware zyxel:emg3525-t50b_firmware zyxel:ax7501-b0_firmware zyxel:pm7300-t0_firmware zyxel:vmg3927-b50b_firmware zyxel:vmg8623-t50b_firmware zyxel:ep240p_firmware zyxel:vmg1312-t20b_firmware zyxel:ex3510-b0_firmware zyxel:pmg5317-t20b_firmware zyxel:px7501-b0_firmware zyxel:vmg8825-b50b_firmware zyxel:vmg3927-b60a_firmware zyxel:xmg3927-b50a_firmware zyxel:vmg8825-b60a_firmware zyxel:vmg3927-t50k_firmware zyxel:pmg5622ga_firmware zyxel:dx5401-b0_firmware zyxel:vmg8825-b50a_firmware zyxel:ex5501-b0_firmware zyxel:vmg4927-b50a_firmware zyxel:vmg8825-t50k_firmware