Vulnerabilities > CVE-2015-7283 - Credentials Management vulnerability in Zyxel Nbg-418N Firmware 1.00(Aadz.3)C0

CVSS 8.1 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

zyxel

CWE-255

NVD

Published: 2015-12-31

Updated: 2016-12-07

Summary

The web administration interface on ZyXEL NBG-418N devices with firmware 1.00(AADZ.3)C0 has a default password of 1234 for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session.

Vulnerable Configurations

Part	Description	Count
OS	Zyxel Zyxel NBG 418N Firmware 1.00\(Aadz.3\)C0	1
Hardware	Zyxel Zyxel NBG 418N -	1

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

https://www.kb.cert.org/vuls/id/330000
http://www.securityfocus.com/bid/78819
http://www.securitytracker.com/id/1034554