CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-6342

**UNSUPPORTED WHEN ASSIGNED** A command injection vulnerability in the export-cgi program of Zyxel NAS326 firmware versions through V5.21(AAZF.18)C0 and NAS542 firmware versions through V5.21(ABAG.15)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted HTTP POST request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.107

EPSS Ranking 93.0%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-os-command-injection-vulnerability-in-nas-products-09-10-2024

Products affected by CVE-2024-6342

Zyxel » Nas326 » Version: N/A

cpe:2.3:h:zyxel:nas326:-
Zyxel » Nas542 » Version: N/A

cpe:2.3:h:zyxel:nas542:-
Zyxel » Nas326 Firmware » Version: N/A

cpe:2.3:o:zyxel:nas326_firmware:-
Zyxel » Nas326 Firmware » Version: 5.21

cpe:2.3:o:zyxel:nas326_firmware:5.21
Zyxel » Nas326 Firmware » Version: 5.21(aazf.12)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.12)c0
Zyxel » Nas326 Firmware » Version: 5.21(aazf.13)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.13)c0
Zyxel » Nas326 Firmware » Version: 5.21(aazf.14)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.14)c0
Zyxel » Nas326 Firmware » Version: 5.21(aazf.16)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.16)c0
Zyxel » Nas326 Firmware » Version: 5.21(aazf.17)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.17)c0
Zyxel » Nas326 Firmware » Version: 5.21(aazf.18)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.18)c0
Zyxel » Nas326 Firmware » Version: 5.21(aazf.7)c0

cpe:2.3:o:zyxel:nas326_firmware:5.21(aazf.7)c0
Zyxel » Nas542 Firmware » Version: N/A

cpe:2.3:o:zyxel:nas542_firmware:-
Zyxel » Nas542 Firmware » Version: 5.21(abag.10)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.10)c0
Zyxel » Nas542 Firmware » Version: 5.21(abag.11)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.11)c0
Zyxel » Nas542 Firmware » Version: 5.21(abag.13)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.13)c0
Zyxel » Nas542 Firmware » Version: 5.21(abag.14)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.14)c0
Zyxel » Nas542 Firmware » Version: 5.21(abag.15)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.15)c0
Zyxel » Nas542 Firmware » Version: 5.21(abag.4)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.4)c0
Zyxel » Nas542 Firmware » Version: 5.21(abag.9)c0

cpe:2.3:o:zyxel:nas542_firmware:5.21(abag.9)c0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-6342

Products

Pricing

Contact Us