CVE-2025-6265
- EPSS 0.12%
- Veröffentlicht 15.07.2025 01:32:10
- Zuletzt bearbeitet 15.07.2025 13:14:24
A path traversal vulnerability in the file_upload-cgi CGI program of Zyxel NWA50AX PRO firmware version 7.10(ACGE.2) and earlier could allow an authenticated attacker with administrator privileges to access specific directories and delete files, such...
CVE-2024-12398
- EPSS 0.15%
- Veröffentlicht 14.01.2025 02:15:07
- Zuletzt bearbeitet 21.01.2025 21:12:02
An improper privilege management vulnerability in the web management interface of the Zyxel WBE530 firmware versions through 7.00(ACLE.3) and WBE660S firmware versions through 6.70(ACGG.2) could allow an authenticated user with limited privileges to ...
CVE-2024-7261
- EPSS 2.81%
- Veröffentlicht 03.09.2024 03:15:03
- Zuletzt bearbeitet 13.09.2024 19:39:40
The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version 6.70(ABVT.4) and earlier, WAC500 firmware version 6.70(ABVS.4) and earlier, WAX655E firmware version 7.00(ACDO.1) and e...