CVE-2023-27992

Zyxel Multiple NAS Devices Command Injection Vulnerability

Beschreibung

Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability that could allow an unauthenticated attacker to execute commands remotely via a crafted HTTP request.

Schweregrad: CRITICAL

CVSS-Score: 9.8

Hersteller: Zyxel

Produkt: Multiple Network-Attached Storage (NAS) Devices