Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-7287 |
|
Vulnerability in dos (CVE-2026-7287)
vulnerability in dos (CVE-2026-7287). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7257 |
|
Vulnerability in zyxel (CVE-2026-7257)
vulnerability in zyxel (CVE-2026-7257). Confidential information can be exposed externally.
|
| CVE-2026-7256 |
|
OS Command Injection in zyxel (CVE-2026-7256)
OS command injection in zyxel (CVE-2026-7256). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7255 |
|
Vulnerability in zyxel (CVE-2026-7255)
vulnerability in zyxel (CVE-2026-7255). Confidential information can be exposed externally.
|
| CVE-2026-1460 |
|
OS Command Injection in zyxel (CVE-2026-1460)
OS command injection in zyxel (CVE-2026-1460). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0711 |
|
OS Command Injection in zyxel (CVE-2026-0711)
OS command injection in zyxel (CVE-2026-0711). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6058 |
|
Vulnerability in c (CVE-2026-6058)
vulnerability in c (CVE-2026-6058). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-40891 KEV |
|
[KEV] OS Command Injection in Zyxel dsl-cpe-devices (CVE-2024-40891)
OS command injection in Zyxel dsl-cpe-devices (CVE-2024-40891). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-40890 KEV |
|
[KEV] OS Command Injection in Zyxel dsl-cpe-devices (CVE-2024-40890)
OS command injection in Zyxel dsl-cpe-devices (CVE-2024-40890). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-11667 KEV |
|
[KEV] Path Traversal in Zyxel multiple-firewalls (CVE-2024-11667)
path traversal in Zyxel multiple-firewalls (CVE-2024-11667). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6884 KEV |
|
[KEV] OS Command Injection in Zyxel emg2926-routers (CVE-2017-6884)
OS command injection in Zyxel emg2926-routers (CVE-2017-6884). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-18368 KEV |
|
[KEV] OS Command Injection in Zyxel p660hn-t1a-routers (CVE-2017-18368)
OS command injection in Zyxel p660hn-t1a-routers (CVE-2017-18368). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-27992 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2023-27992)
OS command injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2023-27992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33010 KEV |
|
[KEV] Vulnerability in Zyxel multiple-firewalls (CVE-2023-33010)
vulnerability in Zyxel multiple-firewalls (CVE-2023-33010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33009 KEV |
|
[KEV] Vulnerability in Zyxel multiple-firewalls (CVE-2023-33009)
vulnerability in Zyxel multiple-firewalls (CVE-2023-33009). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28771 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-firewalls (CVE-2023-28771)
OS command injection in Zyxel multiple-firewalls (CVE-2023-28771). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-30525 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-firewalls (CVE-2022-30525)
OS command injection in Zyxel multiple-firewalls (CVE-2022-30525). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-9054 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2020-9054)
OS command injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2020-9054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-29583 KEV |
|
[KEV] Vulnerability in Zyxel multiple-products (CVE-2020-29583)
vulnerability in Zyxel multiple-products (CVE-2020-29583). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-17901 |
|
Vulnerability in dos (CVE-2017-17901)
vulnerability in dos (CVE-2017-17901). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15226 |
|
OS Command Injection in zyxel (CVE-2017-15226)
OS command injection in zyxel (CVE-2017-15226). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7256 |
|
Vulnerability in zyxel (CVE-2015-7256)
vulnerability in zyxel (CVE-2015-7256). Confidential information can be exposed externally.
|
| CVE-2016-10401 |
|
ZyXEL PK5001Z devices have zyad5001 as the su password, which makes it easier for remote attackers to obtain root access if a non-root account password is known (or a non-root default account exists w...
ZyXEL PK5001Z devices have zyad5001 as the su password, which makes it easier for remote attackers to obtain root access if a non-root account password is known (or a non-root default account exists within an ISP's deployment of these devices).
|
| CVE-2017-3216 |
|
Vulnerability in greenpacket (CVE-2017-3216)
vulnerability in greenpacket (CVE-2017-3216). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7964 |
|
Vulnerability in zyxel (CVE-2017-7964)
vulnerability in zyxel (CVE-2017-7964). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10227 |
|
Vulnerability in dos (CVE-2016-10227)
vulnerability in dos (CVE-2016-10227). Risk of unauthorized operations or information disclosure.
|