Vulnerabilities > CVE-2015-7283 - Credentials Management vulnerability in Zyxel Nbg-418N Firmware 1.00(Aadz.3)C0

047910
CVSS 9.3 - CRITICAL
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
zyxel
CWE-255
critical

Summary

The web administration interface on ZyXEL NBG-418N devices with firmware 1.00(AADZ.3)C0 has a default password of 1234 for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session.

Vulnerable Configurations

Part Description Count
OS
Zyxel
1
Hardware
Zyxel
1

Common Weakness Enumeration (CWE)