Vulnerabilities > Zyxel > Nr7101 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-06-05 CVE-2023-27989 Classic Buffer Overflow vulnerability in Zyxel products
A buffer overflow vulnerability in the CGI program of the Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 could allow a remote authenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.
network
low complexity
zyxel CWE-120
6.5
2023-01-11 CVE-2022-43389 Classic Buffer Overflow vulnerability in Zyxel products
A buffer overflow vulnerability in the library of the web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an unauthenticated attacker to execute some OS commands or to cause denial-of-service (DoS) conditions on a vulnerable device.
network
low complexity
zyxel CWE-120
critical
9.8
2023-01-11 CVE-2022-43390 OS Command Injection vulnerability in Zyxel products
A command injection vulnerability in the CGI program of Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to execute some OS commands on a vulnerable device by sending a crafted HTTP request.
network
low complexity
zyxel CWE-78
8.8
2023-01-11 CVE-2022-43391 Classic Buffer Overflow vulnerability in Zyxel products
A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted HTTP request.
network
low complexity
zyxel CWE-120
6.5
2023-01-11 CVE-2022-43392 Classic Buffer Overflow vulnerability in Zyxel products
A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted authorization request.
network
low complexity
zyxel CWE-120
6.5
2022-03-01 CVE-2021-35036 Cleartext Storage of Sensitive Information vulnerability in Zyxel products
A cleartext storage of information vulnerability in the Zyxel VMG3625-T50B firmware version V5.50(ABTL.0)b2k could allow an authenticated attacker to obtain sensitive information from the configuration file.
network
low complexity
zyxel CWE-312
6.5