Vulnerabilities > Zyxel > Ep240P Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-01-11 CVE-2022-43389 Classic Buffer Overflow vulnerability in Zyxel products
A buffer overflow vulnerability in the library of the web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an unauthenticated attacker to execute some OS commands or to cause denial-of-service (DoS) conditions on a vulnerable device.
network
low complexity
zyxel CWE-120
critical
9.8
2022-04-11 CVE-2022-26413 OS Command Injection vulnerability in Zyxel products
A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface.
low complexity
zyxel CWE-78
8.0
2022-04-11 CVE-2022-26414 Classic Buffer Overflow vulnerability in Zyxel products
A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.
local
low complexity
zyxel CWE-120
5.5
2022-03-01 CVE-2021-35036 Cleartext Storage of Sensitive Information vulnerability in Zyxel products
A cleartext storage of information vulnerability in the Zyxel VMG3625-T50B firmware version V5.50(ABTL.0)b2k could allow an authenticated attacker to obtain sensitive information from the configuration file.
network
low complexity
zyxel CWE-312
6.5