zyxel
334 tracked vulnerabilities.
CVE-2022-45440
MEDIUM
Zyxel AX7501-B0 Firmware < 5.17(ABPC.3)C0 - Authenticated Directory Traversal via FTP Symbolic Link Processing
Jan 17, 2023
CVSS 4.4
EPSS 0.00
CVE-2022-45439
MEDIUM
Zyxel AX7501-B0 Firmware < 5.17(ABPC.3)C0 - Cleartext Storage of Sensitive WiFi Credentials
Jan 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-43393
HIGH
Zyxel GS1920-24v2 <V4.70(ABMH.8)C0 - Memory Corruption
Jan 11, 2023
CVSS 8.2
EPSS 0.01
CVE-2022-43392
MEDIUM
Zyxel NR7101 <V1.15(ACCC.3)C0 - Buffer Overflow
Jan 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-43391
MEDIUM
Zyxel NR7101 <V1.15(ACCC.3)C0 - Buffer Overflow
Jan 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-43390
MEDIUM
Zyxel NR7101 <V1.15(ACCC.3)C0 - Command Injection
Jan 11, 2023
CVSS 5.4
EPSS 0.01
CVE-2022-43389
HIGH
Zyxel NR7101 <V1.15(ACCC.3)C0 - Buffer Overflow
Jan 11, 2023
CVSS 8.6
EPSS 0.01
CVE-2022-38546
MEDIUM
Zyxel NBG7510 <V1.00(ABZY.3)C0 - Info Disclosure
Dec 21, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-40603
MEDIUM
Zyxel Firewalls and VPN Devices 4.30-5.31 - Cross-Site Scripting via CGI Program
Dec 06, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-40602
CRITICAL
Zyxel LTE3301-M209 Firmware < 1.00(ABLG.6)C0 - Unauthenticated Remote Access via Pre-configured Password
Nov 22, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-34746
MEDIUM
Zyxel GS1900 <V2.70 - Info Disclosure
Sep 20, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-34747
CRITICAL
Zyxel NAS326 Firmware < 5.21(aazf.12)c0 - Remote Code Execution via UDP Packet Format String
Sep 06, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-30526
HIGH
Zyxel Firewall Firmware - Privilege Escalation via CLI Command
Jul 19, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-2030
MEDIUM
Zyxel USG FLEX/ATP/VPN Series Firmware - Authenticated Path Traversal via URL Parameter
Jul 19, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-0823
MEDIUM
Zyxel GS1200 Series Firmware < 2.00 - Timing Side-Channel Password Guessing
Jun 09, 2022
CVSS 6.2
EPSS 0.00
CVE-2022-26532
HIGH
Zyxel USG/ZyWALL series <4.71 - Command Injection
May 24, 2022
CVSS 7.8
EPSS 0.05
CVE-2022-26531
MEDIUM
Zyxel USG/ZyWALL series <4.71 - Info Disclosure
May 24, 2022
CVSS 6.1
EPSS 0.06
CVE-2022-0910
MEDIUM
Zyxel USG/ZyWALL/USG FLEX/ATP/VPN Firmware 4.32-4.71/5.21 - Authenticated 2FA Downgrade via CGI
May 24, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-0734
MEDIUM
Zyxel USG/ZyWALL/USG FLEX/ATP/VPN <4.70 - XSS
May 24, 2022
CVSS 5.8
EPSS 0.08
CVE-2022-30525
CRITICAL
KEVNUCLEI
Zyxel Firewall SUID Binary Privilege Escalation
May 12, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-26414
MEDIUM
Zyxel VMG3312-T20A <5.30(ABFX.5)C0 - Buffer Overflow
Apr 11, 2022
CVSS 6.0
EPSS 0.00
CVE-2022-26413
HIGH
Zyxel VMG3312-T20A <5.30(ABFX.5)C0 - Command Injection
Apr 11, 2022
CVSS 8.0
EPSS 0.01
CVE-2022-0556
HIGH
Zyxel AP Configurator <1.1.4 - Privilege Escalation
Apr 11, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-0342
CRITICAL
NUCLEI
Zyxel USG/ZyWALL/USG FLEX/ATP/VPN/NSG Firmware - Unauthenticated Authentication Bypass via CGI Program
Mar 28, 2022
CVSS 9.8
EPSS 0.85
CVE-2021-46387
MEDIUM
NUCLEI
ZyXEL ZyWALL 2 Plus Internet Security Appliance Firmware - Cross-Site Scripting via Insecure URI Handling
Mar 01, 2022
CVSS 6.1
EPSS 0.21
Products
cloudcnm_secumanager 35
gs1900-10hp_firmware 34
usg_flex_100w_firmware 34
usg_flex_200_firmware 34
usg_flex_500_firmware 34
usg_flex_700_firmware 34
usg_flex_100_firmware 30
emg3525-t50b_firmware 28
emg5523-t50b_firmware 28
vmg8623-t50b_firmware 28
usg_flex_50w_firmware 26
atp200_firmware 25
atp500_firmware 25
atp800_firmware 25
vmg3625-t50b_firmware 25
atp100_firmware 24
dx3301-t0_firmware 24
nas326_firmware 24
vpn100_firmware 24
vpn300_firmware 24
vpn50_firmware 24
atp100w_firmware 23
atp700_firmware 23
ex3301-t0_firmware 23
ex5512-t0_firmware 23
ex5601-t0_firmware 23
ex5601-t1_firmware 23
usg_flex_50_firmware 23
vpn1000_firmware 23
wx5600-t0_firmware 23
Quick Filters