Zyxel

Ex3510-b0 Firmware

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-13943

  • EPSS 0.04%
  • Veröffentlicht 24.02.2026 02:38:05
  • Zuletzt bearbeitet 25.02.2026 18:13:55

A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (OS) commands on an affected dev...

9.8

CVE-2025-13942

  • EPSS 0.18%
  • Veröffentlicht 24.02.2026 02:32:18
  • Zuletzt bearbeitet 25.02.2026 18:13:10

A command injection vulnerability in the UPnP function of the Zyxel EX3510-B0 firmware versions through 5.17(ABUP.15.1)C0 could allow a remote attacker to execute operating system (OS) commands on an affected device by sending specially crafted UPnP ...

4.9

CVE-2025-11848

  • EPSS 0.03%
  • Veröffentlicht 24.02.2026 02:14:18
  • Zuletzt bearbeitet 25.02.2026 17:57:37

A null pointer dereference vulnerability in the Wake-on-LAN CGI program of the Zyxel VMG3625-T50B firmware version through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with ...

4.9

CVE-2025-11847

  • EPSS 0.03%
  • Veröffentlicht 24.02.2026 02:09:44
  • Zuletzt bearbeitet 25.02.2026 18:14:42

A null pointer dereference vulnerability in the IP settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with...

4.9

CVE-2025-11846

  • EPSS 0.11%
  • Veröffentlicht 24.02.2026 01:37:57
  • Zuletzt bearbeitet 25.02.2026 18:14:24

A null pointer dereference vulnerability in the account settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker...

4.9

CVE-2025-11845

  • EPSS 0.12%
  • Veröffentlicht 24.02.2026 01:30:50
  • Zuletzt bearbeitet 25.02.2026 18:10:06

A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated at...

8.8

CVE-2025-8693

  • EPSS 0.24%
  • Veröffentlicht 18.11.2025 01:25:05
  • Zuletzt bearbeitet 15.12.2025 14:03:35

A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an authenticated attacker to execute operating system (OS) commands on an affected device.

9.8

CVE-2025-7673

  • EPSS 0.45%
  • Veröffentlicht 16.07.2025 07:15:24
  • Zuletzt bearbeitet 14.01.2026 17:52:29

A buffer overflow vulnerability in the URL parser of the zhttpd web server in Zyxel VMG8825-T50K firmware versions prior to V5.50(ABOM.5)C0 could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and potentially execute ar...

7.2

CVE-2024-12010

  • EPSS 0.32%
  • Veröffentlicht 11.03.2025 02:15:10
  • Zuletzt bearbeitet 13.01.2026 16:19:21

A post-authentication command injection vulnerability in the ”zyUtilMailSend” function of the Zyxel AX7501-B1 firmware version V5.17(ABPC.5.3)C0 and earlier could allow an authenticated attacker with administrator privileges to execute operating syst...

7.2

CVE-2024-12009

  • EPSS 0.32%
  • Veröffentlicht 11.03.2025 02:15:10
  • Zuletzt bearbeitet 13.01.2026 15:54:51

A post-authentication command injection vulnerability in the "ZyEE" function of the Zyxel EX5601-T1 firmware version V5.70(ACDZ.3.6)C0 and earlier could allow an authenticated attacker with administrator privileges to execute operating system (OS) co...