Browse all 156 CVE security advisories affecting Zyxel. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ZyXEL Communications specializes in networking hardware, primarily producing broadband routers, wireless access points, and network-attached storage devices for residential and small-to-medium business environments. The company’s product portfolio has been associated with a significant volume of security flaws, with 156 Common Vulnerabilities and Exposures currently on record. Historically, these vulnerabilities frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from inadequate input validation and weak authentication mechanisms in embedded web interfaces. Notable incidents include critical flaws allowing unauthenticated attackers to execute arbitrary commands or bypass access controls on various NAS and router models. These recurring issues highlight persistent challenges in the firm’s firmware development lifecycle, necessitating rigorous patch management for deployed infrastructure to mitigate risks of unauthorized system access and data compromise.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-43390 | Zyxel NR7101 操作系统命令注入漏洞 — NR7101 firmwareCWE-78 | 5.4 | Medium | 2023-01-11 |
| CVE-2022-43391 | Zyxel NR7101 安全漏洞 — NR7101 firmwareCWE-120 | 6.5 | Medium | 2023-01-11 |
| CVE-2022-43392 | Zyxel NR7101 安全漏洞 — NR7101 firmwareCWE-120 | 6.5 | Medium | 2023-01-11 |
| CVE-2022-43393 | Zyxel GS1920 代码问题漏洞 — GS1920-24v2 firmwareCWE-754 | 8.2 | High | 2023-01-11 |
| CVE-2022-38546 | Zyxel NBG7510 安全漏洞 — NBG7510 firmwareCWE-284 | 5.3 | Medium | 2022-12-21 |
| CVE-2022-40603 | Zyxel USG/ZyWALL 跨站脚本漏洞 — ZyWALL/USG series firmwareCWE-79 | 4.7 | Medium | 2022-12-06 |
| CVE-2022-40602 | Zyxel LTE3301-M209 信任管理问题漏洞 — LTE3301-M209CWE-287 | 9.8 | Critical | 2022-11-22 |
| CVE-2022-34746 | Zyxel GS1900 安全特征问题特征问题漏洞 — Zyxel GS1900 series firmwareCWE-331 | 5.9 | Medium | 2022-09-20 |
| CVE-2022-34747 | Zyxel NAS326 格式化字符串错误漏洞 — Zyxel NAS326 firmwareCWE-134 | 9.8 | Critical | 2022-09-06 |
| CVE-2022-2030 | Zyxel USG FLEX 路径遍历漏洞 — USG FLEX 100(W) firmwareCWE-22 | 6.5 | Medium | 2022-07-19 |
| CVE-2022-30526 | Zyxel USG FLEX 安全漏洞 — USG FLEX 100(W) firmwareCWE-269 | 7.8 | High | 2022-07-19 |
| CVE-2022-0823 | Zyxel GS1200 安全漏洞 — Zyxel GS1200 series firmwareCWE-203 | 6.2 | Medium | 2022-06-07 |
| CVE-2022-26532 | Zyxel USG/ZyWALL 操作系统命令注入漏洞 — USG/ZyWALL series firmwareCWE-88 | 7.8 | High | 2022-05-24 |
| CVE-2022-0910 | Zyxel USG/ZyWALL 授权问题漏洞 — USG/ZyWALL series firmwareCWE-287 | 6.5 | Medium | 2022-05-24 |
| CVE-2022-0734 | Zyxel USG/ZyWALL 跨站脚本漏洞 — USG/ZyWALL series firmwareCWE-79 | 5.8 | Medium | 2022-05-24 |
| CVE-2022-26531 | Zyxel USG/ZyWALL 输入验证错误漏洞 — USG/ZyWALL series firmwareCWE-20 | 6.1 | Medium | 2022-05-24 |
| CVE-2022-30525 | 合勤科技 USG FLEX 操作系统命令注入漏洞 — USG FLEX 100(W) firmwareCWE-78 | 9.8 | Critical | 2022-05-12 |
| CVE-2022-26414 | Zyxel VMG3312-T20A 安全漏洞 — VMG3312-T20A firmwareCWE-120 | 6.0 | Medium | 2022-04-11 |
| CVE-2022-26413 | Zyxel VMG3312-T20A 操作系统命令注入漏洞 — VMG3312-T20A firmwareCWE-78 | 8.0 | High | 2022-04-11 |
| CVE-2022-0556 | Zyxel AP Configurator 安全漏洞 — Zyxel AP Configurator (ZAC)CWE-269 | 7.3 | High | 2022-04-11 |
| CVE-2022-0342 | Zyxel USG/ZyWALL 授权问题漏洞 — USG/ZyWALL series firmwareCWE-287 | 9.8 | Critical | 2022-03-28 |
| CVE-2021-4039 | Zyxel Nwa-1100-Nh 操作系统命令注入漏洞 — NWA1100-NH firmwareCWE-78 | 9.8 | Critical | 2022-03-01 |
| CVE-2021-35036 | Zyxel NWA-1100-NH 命令注入漏洞 — VMG3625-T50B firmwareCWE-312 | 6.5 | Medium | 2022-03-01 |
| CVE-2021-4029 | Zyxel Nbg6816和Zyxel Nbg6817 操作系统命令注入漏洞 — ARMOR Z2 (NBG6817) firmwareCWE-78 | 8.8 | High | 2022-02-22 |
| CVE-2021-4030 | Zyxel Nbg6816和Zyxel Nbg6817 跨站请求伪造漏洞 — ARMOR Z2 (NBG6817) firmwareCWE-352 | 8.0 | High | 2022-02-22 |
| CVE-2021-35035 | Zyxel NBG6604 信息泄露漏洞 — NBG6604 series firmwareCWE-312 | 4.9 | Medium | 2021-12-29 |
| CVE-2021-35034 | Zyxel NBG6604 代码问题漏洞 — NBG6604 series firmwareCWE-613 | 7.4 | High | 2021-12-29 |
| CVE-2021-35032 | Zyxel GS1900 操作系统命令注入漏洞 — GS1900 series firmwareCWE-78 | 6.4 | Medium | 2021-12-28 |
| CVE-2021-35031 | ZyXEL GS1900 操作系统命令注入漏洞 — GS1900 series firmwareCWE-78 | 6.8 | Medium | 2021-12-28 |
| CVE-2021-35033 | 多款Zyxel产品授权问题漏洞 — NBG6818 series firmwareCWE-260 | 7.8 | High | 2021-11-23 |
This page lists every published CVE security advisory associated with Zyxel. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.