Every CVE whose affected-product data names Zyxel Wac500 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2024-7261 — CVSS 9.8 (critical): The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version…
CVE-2024-12398 — CVSS 8.8 (high): An improper privilege management vulnerability in the web management interface of the Zyxel WBE530 firmware versions through 7.00(ACLE.3)…
CVE-2022-26532 — CVSS 7.8 (high): A argument injection vulnerability in the 'packet-trace' CLI command of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG…
CVE-2023-6398 — CVSS 7.2 (high): A post-authentication command injection vulnerability in the file upload binary in Zyxel ATP series firmware versions from 4.32 through…
CVE-2023-22918 — CVSS 6.5 (medium): A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG…
CVE-2024-1575 — CVSS 6.5 (medium): The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3) and earlier versions could allow an…
CVE-2022-26531 — CVSS 6.1 (medium): Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through…
CVE-2023-5797 — CVSS 5.5 (medium): An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG…
CVE-2023-37925 — CVSS 5.5 (medium): An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG…