CVE-2019-10630
HIGHZyxel Nas326 Firmware < 5.21 - Insufficiently Protected Credentials
Title source: ruleDescription
A plaintext password vulnerability in the Zyxel NAS 326 through 5.21 allows an elevated privileged user to get the admin password of the device.
Scores
CVSS v3
8.8
EPSS
0.0031
EPSS Percentile
53.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Classification
CWE
CWE-522
Status
published
Affected Products (1)
zyxel/nas326_firmware
< 5.21
Timeline
Published
Apr 09, 2019
Tracked Since
Feb 18, 2026