First published: Tue Apr 22 2025(Updated: )
**UNSUPPORTED WHEN ASSIGNED** A path traversal vulnerability in the web management interface of the Zyxel AMG1302-T10B firmware version 2.00(AAJC.16)C0 could allow an authenticated attacker with administrator privileges to access restricted directories by sending a crafted HTTP request to an affected device.
Credit: security@zyxel.com.tw
Affected Software | Affected Version | How to fix |
---|---|---|
Zyxel AMG1302-T10B |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2025-3577 has been classified as a critical severity vulnerability due to its potential for unauthorized access to restricted directories.
To mitigate CVE-2025-3577, it is recommended to upgrade the firmware of the Zyxel AMG1302-T10B to a patched version that addresses this vulnerability.
CVE-2025-3577 may allow authenticated attackers to read sensitive files and access unauthorized information on the affected device.
CVE-2025-3577 affects users of the Zyxel AMG1302-T10B firmware version 2.00(AAJC.16)C0 and earlier.
CVE-2025-3577 is unsupported when assigned, indicating that there may not be any official fixes or support available for this vulnerability.