2022-04-11
|
CVE-2022-26413
|
A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface.
|
Ax7501\-B0_firmware, Dx5401\-B0_firmware, Emg3525\-T50b_firmware, Emg5523\-T50b_firmware, Emg5723\-T50k_firmware, Emg6726\-B10a_firmware, Ep240p_firmware, Ex3510\-B0_firmware, Ex5401\-B0_firmware, Ex5501\-B0_firmware, Pm7300\-T0_firmware, Pmg5317\-T20b_firmware, Pmg5617\-T20b2_firmware, Pmg5617ga_firmware, Pmg5622ga_firmware, Px7501\-B0_firmware, Vmg1312\-T20b_firmware, Vmg3312\-T20a_firmware, Vmg3625\-T50b_firmware, Vmg3927\-B50a_firmware, Vmg3927\-B50b_firmware, Vmg3927\-B60a_firmware, Vmg3927\-T50k_firmware, Vmg4927\-B50a_firmware, Vmg8623\-T50b_firmware, Vmg8825\-B50a_firmware, Vmg8825\-B50b_firmware, Vmg8825\-B60a_firmware, Vmg8825\-B60b_firmware, Vmg8825\-T50k_firmware, Xmg3927\-B50a_firmware, Xmg8825\-B50a_firmware
|
8.0
|
|
|
2022-04-11
|
CVE-2022-26414
|
A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.
|
Ax7501\-B0_firmware, Dx5401\-B0_firmware, Emg3525\-T50b_firmware, Emg5523\-T50b_firmware, Emg5723\-T50k_firmware, Emg6726\-B10a_firmware, Ep240p_firmware, Ex3510\-B0_firmware, Ex5401\-B0_firmware, Ex5501\-B0_firmware, Pm7300\-T0_firmware, Pmg5317\-T20b_firmware, Pmg5617\-T20b2_firmware, Pmg5617ga_firmware, Pmg5622ga_firmware, Px7501\-B0_firmware, Vmg1312\-T20b_firmware, Vmg3312\-T20a_firmware, Vmg3625\-T50b_firmware, Vmg3927\-B50a_firmware, Vmg3927\-B50b_firmware, Vmg3927\-B60a_firmware, Vmg3927\-T50k_firmware, Vmg4927\-B50a_firmware, Vmg8623\-T50b_firmware, Vmg8825\-B50a_firmware, Vmg8825\-B50b_firmware, Vmg8825\-B60a_firmware, Vmg8825\-B60b_firmware, Vmg8825\-T50k_firmware, Xmg3927\-B50a_firmware, Xmg8825\-B50a_firmware
|
5.5
|
|
|