zyxel

334 tracked vulnerabilities.

CVE-2022-45440 MEDIUM
Zyxel AX7501-B0 Firmware < 5.17(ABPC.3)C0 - Authenticated Directory Traversal via FTP Symbolic Link Processing
Jan 17, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-45439 MEDIUM
Zyxel AX7501-B0 Firmware < 5.17(ABPC.3)C0 - Cleartext Storage of Sensitive WiFi Credentials
Jan 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-43393 HIGH
Zyxel GS1920-24v2 <V4.70(ABMH.8)C0 - Memory Corruption
Jan 11, 2023
CVSS 8.2
EPSS 0.01
CVE-2022-43392 MEDIUM
Zyxel NR7101 <V1.15(ACCC.3)C0 - Buffer Overflow
Jan 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-43391 MEDIUM
Zyxel NR7101 <V1.15(ACCC.3)C0 - Buffer Overflow
Jan 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-43390 MEDIUM
Zyxel NR7101 <V1.15(ACCC.3)C0 - Command Injection
Jan 11, 2023
CVSS 5.4
EPSS 0.01
CVE-2022-43389 HIGH
Zyxel NR7101 <V1.15(ACCC.3)C0 - Buffer Overflow
Jan 11, 2023
CVSS 8.6
EPSS 0.01
CVE-2022-38546 MEDIUM
Zyxel NBG7510 <V1.00(ABZY.3)C0 - Info Disclosure
Dec 21, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-40603 MEDIUM
Zyxel Firewalls and VPN Devices 4.30-5.31 - Cross-Site Scripting via CGI Program
Dec 06, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-40602 CRITICAL
Zyxel LTE3301-M209 Firmware < 1.00(ABLG.6)C0 - Unauthenticated Remote Access via Pre-configured Password
Nov 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-34746 MEDIUM
Zyxel GS1900 <V2.70 - Info Disclosure
Sep 20, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-34747 CRITICAL
Zyxel NAS326 Firmware < 5.21(aazf.12)c0 - Remote Code Execution via UDP Packet Format String
Sep 06, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-30526 HIGH
Zyxel Firewall Firmware - Privilege Escalation via CLI Command
Jul 19, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-2030 MEDIUM
Zyxel USG FLEX/ATP/VPN Series Firmware - Authenticated Path Traversal via URL Parameter
Jul 19, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-0823 MEDIUM
Zyxel GS1200 Series Firmware < 2.00 - Timing Side-Channel Password Guessing
Jun 09, 2022
CVSS 6.2
EPSS 0.00
CVE-2022-26532 HIGH
Zyxel USG/ZyWALL series <4.71 - Command Injection
May 24, 2022
CVSS 7.8
EPSS 0.05
CVE-2022-26531 MEDIUM
Zyxel USG/ZyWALL series <4.71 - Info Disclosure
May 24, 2022
CVSS 6.1
EPSS 0.06
CVE-2022-0910 MEDIUM
Zyxel USG/ZyWALL/USG FLEX/ATP/VPN Firmware 4.32-4.71/5.21 - Authenticated 2FA Downgrade via CGI
May 24, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-0734 MEDIUM
Zyxel USG/ZyWALL/USG FLEX/ATP/VPN <4.70 - XSS
May 24, 2022
CVSS 5.8
EPSS 0.08
CVE-2022-30525 CRITICAL KEVNUCLEI
Zyxel Firewall SUID Binary Privilege Escalation
May 12, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-26414 MEDIUM
Zyxel VMG3312-T20A <5.30(ABFX.5)C0 - Buffer Overflow
Apr 11, 2022
CVSS 6.0
EPSS 0.00
CVE-2022-26413 HIGH
Zyxel VMG3312-T20A <5.30(ABFX.5)C0 - Command Injection
Apr 11, 2022
CVSS 8.0
EPSS 0.01
CVE-2022-0556 HIGH
Zyxel AP Configurator <1.1.4 - Privilege Escalation
Apr 11, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-0342 CRITICAL NUCLEI
Zyxel USG/ZyWALL/USG FLEX/ATP/VPN/NSG Firmware - Unauthenticated Authentication Bypass via CGI Program
Mar 28, 2022
CVSS 9.8
EPSS 0.85
CVE-2021-46387 MEDIUM NUCLEI
ZyXEL ZyWALL 2 Plus Internet Security Appliance Firmware - Cross-Site Scripting via Insecure URI Handling
Mar 01, 2022
CVSS 6.1
EPSS 0.21