A vulnerability in specific versions of Zyxel NBG6818, NBG7815, WSQ20, WSQ50, WSQ60, and WSR30 firmware with pre-configured password management could allow an attacker to obtain root access of the device, if the local attacker dismantles the device and uses a USB-to-UART cable to connect the device, or if the remote assistance feature had been enabled by an authenticated user.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HZyxel Nbg6818
HWZyxelwszystkie wersjeZyxel Nbg6818 Firmware
OSZyxel< 1.00\(absc.5\)c0Zyxel Nbg7815
HWZyxelwszystkie wersjeZyxel Nbg7815 Firmware
OSZyxel< 1.00\(absk.7\)c0Zyxel Wsq20
HWZyxelwszystkie wersjeZyxel Wsq20 Firmware
OSZyxel< 1.00\(abof.11\)c0Zyxel Wsq50
HWZyxelwszystkie wersjeZyxel Wsq50 Firmware
OSZyxel< 2.20\(abkj.7\)c0Zyxel Wsq60
HWZyxelwszystkie wersjeZyxel Wsq60 Firmware
OSZyxel< 2.20\(abnd.8\)c0Zyxel Wsr30
HWZyxelwszystkie wersjeZyxel Wsr30 Firmware
OSZyxel< 1.00\(abmy.12\)c0
Powiązane podatności
The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AA...
A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 throu...
A buffer overflow vulnerability in the notification function in Zyxel ATP series firmware versions 4.60 throug...
Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series fir...
A OS command injection vulnerability in the CGI program of Zyxel USG FLEX 100(W) firmware versions 5.00 throug...