CVE-2025-8693
- EPSS 0.23%
- Veröffentlicht 18.11.2025 01:25:05
- Zuletzt bearbeitet 15.12.2025 14:03:35
A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an authenticated attacker to execute operating system (OS) commands on an affected device.
CVE-2025-6599
- EPSS 0.06%
- Veröffentlicht 18.11.2025 01:19:47
- Zuletzt bearbeitet 16.12.2025 21:19:59
An uncontrolled resource consumption vulnerability in the web server of Zyxel DX3301-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an attacker to perform Slowloris‑style denial‑of‑service (DoS) attacks. Such attacks may temporarily blo...
CVE-2024-12010
- EPSS 0.32%
- Veröffentlicht 11.03.2025 02:15:10
- Zuletzt bearbeitet 13.01.2026 16:19:21
A post-authentication command injection vulnerability in the ”zyUtilMailSend” function of the Zyxel AX7501-B1 firmware version V5.17(ABPC.5.3)C0 and earlier could allow an authenticated attacker with administrator privileges to execute operating syst...
CVE-2024-8748
- EPSS 0.95%
- Veröffentlicht 03.12.2024 02:15:17
- Zuletzt bearbeitet 21.01.2025 21:20:19
A buffer overflow vulnerability in the packet parser of the third-party library "libclinkc" in Zyxel VMG8825-T50K firmware versions through V5.50(ABOM.8.4)C0 could allow an attacker to cause a temporary denial of service (DoS) condition against the w...