| CVE ID | CVSS3.1 | Exploitable | Vendor | Product | Vulnerability | Date added |
|---|---|---|---|---|---|---|
| CVE-2024-40890 | 8.8 | True | Zyxel | DSL CPE Devices | Zyxel DSL CPE OS Command Injection Vulnerability | 2025-02-11 00:00:00 |
| CVE-2024-40891 | 8.8 | True | Zyxel | DSL CPE Devices | Zyxel DSL CPE OS Command Injection Vulnerability | 2025-02-11 00:00:00 |
| CVE-2024-11667 | 7.5 | True | Zyxel | Multiple Firewalls | Zyxel Multiple Firewalls Path Traversal Vulnerability | 2024-12-03 00:00:00 |
| CVE-2017-6884 | 8.8 | True | Zyxel | EMG2926 Routers | Zyxel EMG2926 Routers Command Injection Vulnerability | 2023-09-18 00:00:00 |
| CVE-2017-18368 | 9.8 | True | Zyxel | P660HN-T1A Routers | Zyxel P660HN-T1A Routers Command Injection Vulnerability | 2023-08-07 00:00:00 |
| CVE-2023-27992 | 9.8 | True | Zyxel | Multiple Network-Attached Storage (NAS) Devices | Zyxel Multiple NAS Devices Command Injection Vulnerability | 2023-06-23 00:00:00 |
| CVE-2023-33010 | 9.8 | True | Zyxel | Multiple Firewalls | Zyxel Multiple Firewalls Buffer Overflow Vulnerability | 2023-06-05 00:00:00 |
| CVE-2023-33009 | 9.8 | True | Zyxel | Multiple Firewalls | Zyxel Multiple Firewalls Buffer Overflow Vulnerability | 2023-06-05 00:00:00 |
| CVE-2023-28771 | 9.8 | True | Zyxel | Multiple Firewalls | Zyxel Multiple Firewalls OS Command Injection Vulnerability | 2023-05-31 00:00:00 |
| CVE-2022-30525 | 9.8 | True | Zyxel | Multiple Firewalls | Zyxel Multiple Firewalls OS Command Injection Vulnerability | 2022-05-16 00:00:00 |
| CVE-2020-9054 | 9.8 | True | Zyxel | Multiple Network-Attached Storage (NAS) Devices | Zyxel Multiple NAS Devices OS Command Injection Vulnerability | 2022-03-25 00:00:00 |
| CVE-2020-29583 | 9.8 | True | Zyxel | Multiple Products | Zyxel Multiple Products Use of Hard-Coded Credentials Vulnerability | 2021-11-03 00:00:00 |
AVET INS is an owner of VULNDBASE brand and website. This product uses data from the NVD API but is not endorsed or certified by the NVD. See NVD page for more information. CVE is a registered trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE site. CWE is a registered trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE page. KEV (Known Exploited Vulnerabilities) is a catalog maintained by CISA. EUVD is the official EU repository for timely, curated cybersecurity vulnerability intelligence and remediation guidance run by ENISA. DORA (Digital Operational Resilience Act) is and EU directive.
Copyright AVET INS 1997 - 2026