Vulnerabilities > Zyxel
|2021-09-29||CVE-2021-35027|| Path Traversal vulnerability in Zyxel Zywall Vpn2S Firmware 1.12(Abln.0)C0 |
A directory traversal vulnerability in the web server of the Zyxel VPN2S firmware version 1.12 could allow a remote attacker to gain access to sensitive information.
| 5.0 |
|2021-09-29||CVE-2021-35028|| OS Command Injection vulnerability in Zyxel Zywall Vpn2S Firmware 1.12(Abln.0)C0 |
A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands.
| 7.2 |
|2021-07-26||CVE-2021-35030|| Cross-site Scripting vulnerability in Zyxel products |
A vulnerability was found in the CGI program in Zyxel GS1900-8 firmware version V2.60, that did not properly sterilize packet contents and could allow an authenticated, local user to perform a cross-site scripting (XSS) attack via a crafted LLDP packet.
| 2.3 |
|2021-07-02||CVE-2021-35029|| Improper Authentication vulnerability in Zyxel products |
An authentication bypasss vulnerability in the web-based management interface of Zyxel USG/Zywall series firmware versions 4.35 through 4.64 and USG Flex, ATP, and VPN series firmware versions 4.35 through 5.01, which could allow a remote attacker to execute arbitrary commands on an affected device.
| 7.5 |
|2021-03-16||CVE-2020-28899|| Missing Authentication for Critical Function vulnerability in Zyxel products |
The Web CGI Script on ZyXEL LTE4506-M606 V1.00(ABDO.2)C0 devices does not require authentication, which allows remote unauthenticated attackers (via crafted JSON action data to /cgi-bin/gui.cgi) to use all features provided by the router.
| 6.4 |
|2021-01-26||CVE-2021-3297|| Improper Authentication vulnerability in Zyxel Nbg2105 Firmware V1.00(Aagu.2)C0 |
On Zyxel NBG2105 V1.00(AAGU.2)C0 devices, setting the login cookie to 1 provides administrator access.
| 7.2 |
|2020-12-27||CVE-2020-29299|| Command Injection vulnerability in Zyxel products |
Certain Zyxel products allow command injection by an admin via an input string to chg_exp_pwd during a password-change action.
| 9.0 |
|2020-12-22||CVE-2020-29583|| Cleartext Storage of Sensitive Information vulnerability in Zyxel products |
Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password.
| 10.0 |
|2020-12-14||CVE-2020-20183|| Missing Authorization vulnerability in Zyxel P1302-T10 V3 Firmware 2.00 |
Insecure direct object reference vulnerability in Zyxel’s P1302-T10 v3 with firmware version 2.00(ABBX.3) and earlier allows attackers to gain privileges and access certain admin pages.
| 5.0 |
|2020-11-27||CVE-2020-25014|| Out-of-bounds Write vulnerability in Zyxel Access Points Firmware and ZLD Firmware |
A stack-based buffer overflow in fbwifi_continue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet.
| 7.5 |