cbcvebase.
CVE-2022-40602
published 2022-11-22

CVE-2022-40602: A flaw in the Zyxel LTE3301-M209 firmware verisons prior to V1.00(ABLG.6)C0 could allow a remote attacker to access the device using an improper pre-configured…

PriorityP259critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.02%
59.0th percentile
A flaw in the Zyxel LTE3301-M209 firmware verisons prior to V1.00(ABLG.6)C0 could allow a remote attacker to access the device using an improper pre-configured password if the remote administration feature has been enabled by an authenticated administrator.

Affected

2 ranges
VendorProductVersion rangeFixed in
zyxellte3301-m209< V1.00(ABLG.6)C0V1.00(ABLG.6)C0
zyxellte3301-m209_firmware< 1.00\(ablg.6\)c01.00\(ablg.6\)c0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.