zyxel

330 tracked vulnerabilities.

CVE-2020-15314 MEDIUM
Zyxel CloudCNM SecuManager <3.1.1 - Info Disclosure
Jun 29, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-15313 MEDIUM
Zyxel CloudCNM SecuManager <3.1.1 - Info Disclosure
Jun 29, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-15312 MEDIUM
Zyxel CloudCNM SecuManager <3.1.1 - Info Disclosure
Jun 29, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-15336 HIGH
Zyxel CloudCNM SecuManager <3.1.1 - Open Redirect
Jun 26, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-15335 HIGH
Zyxel CloudCNM SecuManager <3.1.1 - CSRF
Jun 26, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-15348 CRITICAL
Zyxel CloudCNM SecuManager <3.1.1 - Code Injection
Jun 26, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-14461 HIGH
Zyxel Armor X1 WAP6806 1.00(ABAL.6)C0 - Path Traversal via images/eaZy/ URI
Jun 22, 2020
CVSS 8.6
EPSS 0.11
CVE-2020-12695 HIGH
Open Connectivity Foundation UPnP <2020-04-17 - SSRF
Jun 08, 2020
CVSS 7.5
EPSS 0.04
CVE-2020-9054 CRITICAL KEVNUCLEI
ZyXEL NAS326/520/540/542 < 5.21 - Unauthenticated RCE via Weblogin.cgi
Mar 04, 2020
CVSS 9.8
EPSS 0.94
CVE-2019-13495 MEDIUM
Zyxel XGS2210-52HP Firmware 4.50 - Authenticated Stored Cross-Site Scripting via rpSys.html Name or Location Field
Mar 31, 2020
CVSS 5.4
EPSS 0.00
CVE-2019-15804 HIGH
Zyxel GS1900 <2.50(AAHH.0)C0 - Info Disclosure
Nov 14, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-15803 CRITICAL
Zyxel GS1900 Firmware < 2.50(AAHH.0)C0 - Unauthenticated Diagnostics Shell Access via Undocumented Key Sequence
Nov 14, 2019
CVSS 9.1
EPSS 0.00
CVE-2019-15802 MEDIUM
Zyxel GS1900 Series Firmware < 2.50(AAHH.0)C0 - Use of Hard-coded Credentials in Password Encryption
Nov 14, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-15801 HIGH
Zyxel GS1900 Series Firmware < 2.50 - Use of Hard-coded Credentials in libfds.so
Nov 14, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-15800 CRITICAL
Zyxel GS1900 Firmware < 2.50 - OS Command Injection via libclicmd.so Functions
Nov 14, 2019
CVSS 9.8
EPSS 0.03
CVE-2019-15799 HIGH
Zyxel GS1900 Series Firmware < 2.50 - Privilege Escalation via SSH Access
Nov 14, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-15815 MEDIUM
ZyXEL P-1302-T10D <2.00(ABBX.3) - Privilege Escalation
Nov 12, 2019
CVSS 6.5
EPSS 0.00
CVE-2019-17354 CRITICAL
Zyxel NBG-418N v2 Firmware V1.00(AARP.9)C0 - Unauthenticated Information Disclosure and Data Modification via wan.htm
Oct 09, 2019
CVSS 9.4
EPSS 0.00
CVE-2019-12581 MEDIUM NUCLEI
Zyxel ZyWall USG UAG Firmware - Reflected Cross-Site Scripting via err_msg Parameter
Jun 27, 2019
CVSS 6.1
EPSS 0.36
CVE-2019-12583 CRITICAL NUCLEI
Zyxel UAG/USG/ZyWall Firmware - Unauthenticated Guest Account Generation via Free Time Component
Jun 27, 2019
CVSS 9.1
EPSS 0.59
CVE-2019-6725 CRITICAL
ZyXEL P-660HN-T1 V2 2.00(AAKK.3) - Unauthenticated Hard-coded Credential Exposure via rpWLANRedirect.asp
May 31, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-9955 MEDIUM NUCLEI
Zyxel Firewall Devices - Reflected Cross-Site Scripting via Login Page mp_idx Parameter
Apr 22, 2019
CVSS 6.1
EPSS 0.11
CVE-2019-10634 MEDIUM
Zyxel NAS326 Firmware < 5.21 - Authenticated Stored Cross-Site Scripting via Description Fields
Apr 09, 2019
CVSS 5.4
EPSS 0.00
CVE-2019-10633 HIGH
Zyxel NAS326 Firmware < 5.21 - Authenticated Code Injection via tjp6jp6y4 simZysh and ck6fup6 APIs
Apr 09, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-10632 MEDIUM
Zyxel NAS326 Firmware < 5.21 - Path Traversal in File Browser
Apr 09, 2019
CVSS 6.5
EPSS 0.00
Products
cloudcnm_secumanager 35 gs1900-10hp_firmware 34 usg_flex_100w_firmware 34 usg_flex_200_firmware 34 usg_flex_500_firmware 34 usg_flex_700_firmware 34 usg_flex_100_firmware 30 emg3525-t50b_firmware 26 emg5523-t50b_firmware 26 usg_flex_50w_firmware 26 vmg8623-t50b_firmware 26 atp200_firmware 25 atp500_firmware 25 atp800_firmware 25 atp100_firmware 24 nas326_firmware 24 vpn100_firmware 24 vpn300_firmware 24 vpn50_firmware 24 atp100w_firmware 23 atp700_firmware 23 usg_flex_50_firmware 23 vmg3625-t50b_firmware 23 vpn1000_firmware 23 dx3301-t0_firmware 22 ex3510-b0_firmware 22 dx5401-b0_firmware 21 emg5723-t50k_firmware 21 ex3301-t0_firmware 21 ex5510-b0_firmware 21
Quick Filters
Critical CVEs With Exploits In CISA KEV