Zyxel Nsa325 V2 Firmware vulnerabilities
2 known vulnerabilities affecting zyxel/nsa325_v2_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2018-14893P2HIGHCVSS 8.8v4.812018-11-27
CVE-2018-14893 [HIGH] CWE-77 CVE-2018-14893: A system command injection vulnerability in zyshclient in ZyXEL NSA325 V2 version 4.81 allows attack
A system command injection vulnerability in zyshclient in ZyXEL NSA325 V2 version 4.81 allows attackers to execute system commands via the web application API.
nvd
CVE-2018-14892P3HIGHCVSS 8.8v4.812018-11-27
CVE-2018-14892 [HIGH] CWE-352 CVE-2018-14892: Missing protections against Cross-Site Request Forgery in the web application in ZyXEL NSA325 V2 ver
Missing protections against Cross-Site Request Forgery in the web application in ZyXEL NSA325 V2 version 4.81 allow attackers to perform state-changing actions via crafted HTTP forms.
nvd