Vulnerability Details CVE-2022-34747
A format string vulnerability in Zyxel NAS326 firmware versions prior to V5.21(AAZF.12)C0 could allow an attacker to achieve unauthorized remote code execution via a crafted UDP packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.043
EPSS Ranking 88.4%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-34747
-
cpe:2.3:h:zyxel:nas326:-
-
cpe:2.3:o:zyxel:nas326_firmware:-
-
cpe:2.3:o:zyxel:nas326_firmware:5.21
-
cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.7)c0