Zyxel Wax610d Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Zyxel Wax610d Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2024-7261 — CVSS 9.8 (critical): The improper neutralization of special elements in the parameter "host" in the CGI program of Zyxel NWA1123ACv3 firmware version…
CVE-2024-12398 — CVSS 8.8 (high): An improper privilege management vulnerability in the web management interface of the Zyxel WBE530 firmware versions through 7.00(ACLE.3)…
CVE-2022-26532 — CVSS 7.8 (high): A argument injection vulnerability in the 'packet-trace' CLI command of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG…
CVE-2023-6398 — CVSS 7.2 (high): A post-authentication command injection vulnerability in the file upload binary in Zyxel ATP series firmware versions from 4.32 through…
CVE-2025-6265 — CVSS 7.2 (high): A path traversal vulnerability in the file_upload-cgi CGI program of Zyxel NWA50AX PRO firmware version 7.10(ACGE.2) and earlier could…
CVE-2023-22918 — CVSS 6.5 (medium): A post-authentication information exposure vulnerability in the CGI program of Zyxel ATP series firmware versions 4.32 through 5.35, USG…
CVE-2024-1575 — CVSS 6.5 (medium): The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3) and earlier versions could allow an…
CVE-2022-26531 — CVSS 6.1 (medium): Multiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through…
CVE-2023-5797 — CVSS 5.5 (medium): An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG…
CVE-2023-37925 — CVSS 5.5 (medium): An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG…
CVE-2022-45854 — CVSS 4.3 (medium): An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0)C0, which could allow a LAN attacker to…