Zyxel Nas542 Firmware vulnerabilities
18 known vulnerabilities affecting zyxel/nas542_firmware.
Total CVEs
18
CISA KEV
2
actively exploited
Public exploits
3
Exploited in wild
3
Severity breakdown
CRITICAL9HIGH7MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2024-6342CRITICALCVSS 9.8fixed in 5.21\(abag.15\)c0v5.21\(abag.15\)c0+1 more2024-09-10
CVE-2024-6342 [CRITICAL] CWE-78 CVE-2024-6342: **UNSUPPORTED WHEN ASSIGNED** A command injection vulnerability in the export-cgi program of Zyxel N
**UNSUPPORTED WHEN ASSIGNED** A command injection vulnerability in the export-cgi program of Zyxel NAS326 firmware versions through V5.21(AAZF.18)C0 and NAS542 firmware versions through V5.21(ABAG.15)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted HTTP POST request.
cvelistv5nvd
CVE-2024-29972CRITICALCVSS 9.8PoCfixed in 5.21\(abag.14\)c0fixed in V5.21(ABAG.14)C02024-06-04
CVE-2024-29972 [CRITICAL] CWE-78 CVE-2024-29972: ** UNSUPPORTED WHEN ASSIGNED **
The command injection vulnerability in the CGI program "remote_help-
** UNSUPPORTED WHEN ASSIGNED **
The command injection vulnerability in the CGI program "remote_help-cgi" in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted HTTP POST request.
cvelistv5nvd
CVE-2024-29974CRITICALCVSS 9.8fixed in 5.21\(abag.14\)c0fixed in V5.21(ABAG.14)C02024-06-04
CVE-2024-29974 [CRITICAL] CWE-434 CVE-2024-29974: ** UNSUPPORTED WHEN ASSIGNED **
The remote code execution vulnerability in the CGI program “file_upl
** UNSUPPORTED WHEN ASSIGNED **
The remote code execution vulnerability in the CGI program “file_upload-cgi” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated attacker to execute arbitrary code by uploading a crafted configuration file to a vulnerable devic
cvelistv5nvd
CVE-2024-29973CRITICALCVSS 9.8ExploitedPoCfixed in 5.21\(abag.14\)c0fixed in V5.21(ABAG.14)C02024-06-04
CVE-2024-29973 [CRITICAL] CWE-78 CVE-2024-29973: ** UNSUPPORTED WHEN ASSIGNED **
The command injection vulnerability in the “setCookie” parameter in
** UNSUPPORTED WHEN ASSIGNED **
The command injection vulnerability in the “setCookie” parameter in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted HTTP POST request.
cvelistv5nvd
CVE-2024-29976MEDIUMCVSS 6.5fixed in 5.21\(abag.14\)c0fixed in V5.21(ABAG.14)C02024-06-04
CVE-2024-29976 [MEDIUM] CWE-269 CVE-2024-29976: ** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the command “show
** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the command “show_allsessions” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an authenticated attacker to obtain a logged-in administrator’s session information containing cookies on an affec
cvelistv5nvd
CVE-2024-29975MEDIUMCVSS 6.7fixed in 5.21\(abag.14\)c0fixed in V5.21(ABAG.14)C02024-06-04
CVE-2024-29975 [MEDIUM] CWE-269 CVE-2024-29975: ** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the SUID executab
** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the SUID executable binary in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an authenticated local attacker with administrator privileges to execute some system commands as the “root” user on a
cvelistv5nvd
CVE-2023-5372HIGHCVSS 7.2fixed in 5.21\(abag.13\)c0≤ V5.21(ABAG.12)C02024-01-30
CVE-2023-5372 [HIGH] CWE-78 CVE-2023-5372: The post-authentication command injection vulnerability in Zyxel NAS326 firmware versions through V5
The post-authentication command injection vulnerability in Zyxel NAS326 firmware versions through V5.21(AAZF.15)C0 and NAS542 firmware versions through V5.21(ABAG.12)C0 could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands by sending a crafted query parameter attached to the URL of an affected
cvelistv5nvd
CVE-2023-35138CRITICALCVSS 9.8≤ 5.21\(abag.11\)c0vV5.21(ABAG.11)C02023-11-30
CVE-2023-35138 [CRITICAL] CWE-78 CVE-2023-35138: A command injection vulnerability in the “show_zysync_server_contents” function of the Zyxel NAS326
A command injection vulnerability in the “show_zysync_server_contents” function of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted HTTP POST request.
cvelistv5nvd
CVE-2023-4474CRITICALCVSS 9.8≤ 5.21\(abag.11\)c0vV5.21(ABAG.11)C02023-11-30
CVE-2023-4474 [CRITICAL] CWE-78 CVE-2023-4474: The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware vers
The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted URL to a vulnerable device.
cvelistv5nvd
CVE-2023-4473CRITICALCVSS 9.8≤ 5.21\(abag.11\)c0vV5.21(ABAG.11)C02023-11-30
CVE-2023-4473 [CRITICAL] CWE-78 CVE-2023-4473: A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.
A command injection vulnerability in the web server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted URL to a vulnerable device.
cvelistv5nvd
CVE-2023-37927HIGHCVSS 8.8≤ 5.21\(abag.11\)c0vV5.21(ABAG.11)C02023-11-30
CVE-2023-37927 [HIGH] CWE-78 CVE-2023-37927: The improper neutralization of special elements in the CGI program of the Zyxel NAS326 firmware vers
The improper neutralization of special elements in the CGI program of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an authenticated attacker to execute some operating system (OS) commands by sending a crafted URL to a vulnerable device.
cvelistv5nvd
CVE-2023-37928HIGHCVSS 8.8≤ 5.21\(abag.11\)c0vV5.21(ABAG.11)C02023-11-30
CVE-2023-37928 [HIGH] CWE-78 CVE-2023-37928: A post-authentication command injection vulnerability in the WSGI server of the Zyxel NAS326 firmwar
A post-authentication command injection vulnerability in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an authenticated attacker to execute some operating system (OS) commands by sending a crafted URL to a vulnerable device.
cvelistv5nvd
CVE-2023-35137HIGHCVSS 7.5≤ 5.21\(abag.11\)c0vV5.21(ABAG.11)C02023-11-30
CVE-2023-35137 [HIGH] CWE-287 CVE-2023-35137: An improper authentication vulnerability in the authentication module of the Zyxel NAS326 firmware v
An improper authentication vulnerability in the authentication module of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated attacker to obtain system information by sending a crafted URL to a vulnerable device.
cvelistv5nvd
CVE-2023-27992CRITICALCVSS 9.8KEVfixed in 5.21\(abag.11\)c0fixed in V5.21(ABAG.11)C02023-06-19
CVE-2023-27992 [CRITICAL] CWE-78 CVE-2023-27992: The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior t
The pre-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.14)C0, NAS540 firmware versions prior to V5.21(AATB.11)C0, and NAS542 firmware versions prior to V5.21(ABAG.11)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands remotely by sending a crafted HTTP r
cvelistv5nvd
CVE-2023-27988HIGHCVSS 7.2fixed in 5.21\(abag.10\)c02023-05-30
CVE-2023-27988 [HIGH] CWE-78 CVE-2023-27988: The post-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior
The post-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.13)C0 could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device remotely.
nvd
CVE-2020-13364HIGHCVSS 8.8fixed in v5.21\(abag.6\)c02020-08-06
CVE-2020-13364 [HIGH] CVE-2020-13364: A backdoor in certain Zyxel products allows remote TELNET access via a CGI script. This affects NAS5
A backdoor in certain Zyxel products allows remote TELNET access via a CGI script. This affects NAS520 V5.21(AASZ.4)C0, V5.21(AASZ.0)C0, V5.11(AASZ.3)C0, and V5.11(AASZ.0)C0; NAS542 V5.11(ABAG.0)C0, V5.20(ABAG.1)C0, and V5.21(ABAG.3)C0; NSA325 v2_V4.81(AALS.0)C0 and V4.81(AAAJ.1)C0; NSA310 4.22(AFK.0)C0 and 4.22(AFK.1)C0; NAS326 V5.21(AAZF.8)C0, V5.11(AAZF.4)
nvd
CVE-2020-13365HIGHCVSS 8.8fixed in v5.21\(abag.6\)c02020-08-06
CVE-2020-13365 [HIGH] CWE-287 CVE-2020-13365: Certain Zyxel products have a locally accessible binary that allows a non-root user to generate a pa
Certain Zyxel products have a locally accessible binary that allows a non-root user to generate a password for an undocumented user account that can be used for a TELNET session as root. This affects NAS520 V5.21(AASZ.4)C0, V5.21(AASZ.0)C0, V5.11(AASZ.3)C0, and V5.11(AASZ.0)C0; NAS542 V5.11(ABAG.0)C0, V5.20(ABAG.1)C0, and V5.21(ABAG.3)C0; NSA325 v2_V4
nvd
CVE-2020-9054CRITICALCVSS 9.8KEVPoCfixed in 5.21\(abag.4\)c02020-03-04
CVE-2020-9054 [CRITICAL] CWE-78 CVE-2020-9054: Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre-au
Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable device. ZyXEL NAS devices achieve authentication by using the weblogin.cgi CGI executable. This program fails to
nvd