Vulnerabilities > Zyxel > Nbg6817 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-02-24 CVE-2021-4029 OS Command Injection vulnerability in Zyxel Nbg6816 Firmware and Nbg6817 Firmware
A command injection vulnerability in the CGI program of the Zyxel ARMOR Z1/Z2 firmware could allow an attacker to execute arbitrary OS commands via a LAN interface.
low complexity
zyxel CWE-78
8.8
2022-02-24 CVE-2021-4030 Cross-Site Request Forgery (CSRF) vulnerability in Zyxel Nbg6816 Firmware and Nbg6817 Firmware
A cross-site request forgery vulnerability in the HTTP daemon of the Zyxel ARMOR Z1/Z2 firmware could allow an attacker to execute arbitrary commands if they coerce or trick a local user to visit a compromised website with malicious scripts.
network
low complexity
zyxel CWE-352
8.8