Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-1460

A post-authentication command injection vulnerability in the “DomainName” parameter of the DHCP configuration file in Zyxel DX3301-T0 and EX3301-T0 firmware versions through 5.50(ABVY.7.1)C0 could allow an authenticated attacker with administrator privileges to execute OS commands on an affected device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 63.3%
CVSS Severity
CVSS v3 Score 7.2
Products affected by CVE-2026-1460


Contact Us

Shodan ® - All rights reserved