New Zyxel RCE Vulnerability allows remote attackes execute commands as root!

ssd-disclosure.com

cross-posted to:
netsec

New Zyxel RCE Vulnerability allows remote attackes execute commands as root!

ssd-disclosure.com

L4sBotB to

Security Operations • 8 months ago

cross-posted to:
netsec

SSD Advisory - Zyxel VPN Series Pre-auth Remote Command Execution - SSD Secure Disclosure

ssd-disclosure.com

Summary Chaining of three vulnerabilities allows unauthenticated attackers to execute arbitrary command with root privileges on Zyxel VPN firewall (VPN50, VPN100, VPN300, VPN500, VPN1000). Due to recent attack surface changes in Zyxel, the chain described below broke and become unusable – we have decided to disclose this even though it is no longer exploitable. Credit … SSD Advisory – Zyxel VPN Series Pre-auth Remote Command Execution Read More »

New Zyxel RCE Vulnerability allows remote attackes execute commands as root!::undefined

You must log in or register to comment.

Chat