Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ZyXEL — Vulnerabilities & Security Advisories 156

Browse all 156 CVE security advisories affecting ZyXEL. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ZyXEL Communications specializes in networking hardware, primarily producing broadband routers, wireless access points, and network-attached storage devices for residential and small-to-medium business environments. The company’s product portfolio has been associated with a significant volume of security flaws, with 156 Common Vulnerabilities and Exposures currently on record. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include critical flaws allowing unauthenticated attackers to execute arbitrary commands or bypass access controls on various NAS and router models. These recurring issues highlight persistent challenges in the firm’s firmware development lifecycle, necessitating rigorous patch management for deployed infrastructure to mitigate risks of unauthorized system access and data compromise.

Top products by ZyXEL: ATP series firmware NAS326 firmware VMG8825-T50K firmware VMG3625-T50B firmware USG/Zywall series Firmware USG FLEX series firmware NR7101 firmware NBG-418N v2 firmware VMG4325-B10A firmware USG FLEX 100(W) firmware ZyWALL/USG series firmware USG FLEX H series uOS firmware AX7501-B0 firmware NBG6604 firmware DX5401-B0 firmware VMG3312-T20A firmware GS1900-48 firmware DX3301-T0 firmware DX3300-T0 firmware ARMOR Z2 (NBG6817) firmware NBG6604 series firmware GS1900 series firmware ZyWALL VPN2S Firmware GS1900-10HP firmware WBE660S firmware NWA1123ACv3 firmware NWA1100-N firmware WRE6505 v2 firmware P-6101C firmware WBE530 firmware
CVE IDTitleCVSSSeverityPublished
CVE-2023-6399 Zyxel ATP 格式化字符串错误漏洞 — ATP series firmwareCWE-134 5.7 Medium2024-02-20
CVE-2023-6398 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-78 7.2 High2024-02-20
CVE-2023-6397 Zyxel ATP 代码问题漏洞 — ATP series firmwareCWE-476 6.5 Medium2024-02-20
CVE-2023-5372 Zyxel NAS326 操作系统命令注入漏洞 — NAS326 firmwareCWE-78 7.2 High2024-01-30
CVE-2023-4474 Zyxel NAS326 操作系统命令注入漏洞 — NAS326 firmwareCWE-78 9.8 Critical2023-11-30
CVE-2023-4473 Zyxel NAS326 操作系统命令注入漏洞 — NAS326 firmwareCWE-78 9.8 Critical2023-11-30
CVE-2023-37928 Zyxel NAS326 操作系统命令注入漏洞 — NAS326 firmwareCWE-78 8.8 High2023-11-30
CVE-2023-37927 Zyxel NAS326 操作系统命令注入漏洞 — NAS326 firmwareCWE-78 8.8 High2023-11-30
CVE-2023-35138 Zyxel NAS326 安全漏洞 — NAS326 firmwareCWE-78 9.8 Critical2023-11-30
CVE-2023-35137 Zyxel NAS326 授权问题漏洞 — NAS326 firmwareCWE-287 7.5 High2023-11-30
CVE-2023-5960 Zyxel USG FLEX 安全漏洞 — USG FLEX series firmwareCWE-269 5.5 Medium2023-11-28
CVE-2023-5797 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-269 5.5 Medium2023-11-28
CVE-2023-5650 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-269 5.5 Medium2023-11-28
CVE-2023-4398 Zyxel ATP 输入验证错误漏洞 — ATP series firmwareCWE-190 7.5 High2023-11-28
CVE-2023-4397 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-120 4.4 Medium2023-11-28
CVE-2023-37926 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-120 5.5 Medium2023-11-28
CVE-2023-37925 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-269 5.5 Medium2023-11-28
CVE-2023-35139 Zyxel ATP 跨站脚本漏洞 — ATP series firmwareCWE-79 5.2 Medium2023-11-28
CVE-2023-35136 Zyxel ATP 输入验证错误漏洞 — ATP series firmwareCWE-20 5.5 Medium2023-11-28
CVE-2023-5593 Zyxel SecuExtender SSL VPN Client 安全漏洞 — SecuExtender SSL VPN ClientCWE-787 7.8 High2023-11-20
CVE-2023-35140 Zyxel GS1900 安全漏洞 — GS1900-24EP firmwareCWE-269 5.5 Medium2023-11-07
CVE-2023-43314 Zyxel PMG 安全漏洞 — PMG2005-T20BCWE-120 7.5 High2023-09-27
CVE-2023-33013 Zyxel NBG6604 操作系统命令注入漏洞 — NBG6604 firmwareCWE-78 8.8 High2023-08-14
CVE-2023-28768 Zyxel XGS2220-30 安全漏洞 — XGS2220-30 firmwareCWE-755 6.5 Medium2023-08-14
CVE-2023-34141 Zyxel ATP 操作系统命令注入漏洞 — ATP series firmwareCWE-78 8.0 High2023-07-17
CVE-2023-34140 Zyxel ATP 安全漏洞 — ATP series firmwareCWE-120 6.5 Medium2023-07-17
CVE-2023-34139 Zyxel USG FLEX 操作系统命令注入漏洞 — USG FLEX series firmwareCWE-78 8.8 High2023-07-17
CVE-2023-34138 Zyxel ATP 操作系统命令注入漏洞 — ATP series firmwareCWE-78 8.0 High2023-07-17
CVE-2023-33012 Zyxel ATP 操作系统命令注入漏洞 — ATP series firmwareCWE-78 8.8 High2023-07-17
CVE-2023-33011 Zyxel ATP 格式化字符串错误漏洞 — ATP series firmwareCWE-134 8.8 High2023-07-17

This page lists every published CVE security advisory associated with ZyXEL. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.