Vulnerabilities > Zyxel > Nr5101 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-01-11 CVE-2022-43390 OS Command Injection vulnerability in Zyxel products
A command injection vulnerability in the CGI program of Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to execute some OS commands on a vulnerable device by sending a crafted HTTP request.
network
low complexity
zyxel CWE-78
8.8
2022-03-01 CVE-2021-35036 Cleartext Storage of Sensitive Information vulnerability in Zyxel products
A cleartext storage of information vulnerability in the Zyxel VMG3625-T50B firmware version V5.50(ABTL.0)b2k could allow an authenticated attacker to obtain sensitive information from the configuration file.
network
low complexity
zyxel CWE-312
6.5