← Back to Search

Zyxel (DSL CPE Devices)

2025-02-11 · Severity 5/10 — Medium · Unknown
Incident Summary

Multiple Zyxel DSL CPE devices contain a post-authentication command injection vulnerability in the CGI program that could allow an authenticated attacker to execute OS commands via a crafted HTTP req

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2025-02-11
Related Breaches

No related breaches in the last 90 days.