CVE-2023-27992CISA KEV: Actively Exploited

Zyxel Multiple NAS Devices Command Injection Vulnerability

Published Jun 23, 2023·Updated Jun 23, 2023

Description

Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability that could allow an unauthenticated attacker to execute commands remotely via a crafted HTTP request.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free