CVE-2020-9054CISA KEV: Actively Exploited

Zyxel Multiple NAS Devices OS Command Injection Vulnerability

Published Mar 25, 2022·Updated Mar 25, 2022

Description

Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free