Filtered by vendor Zyxel Subscriptions
Filtered by product Zywall 2 Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-4319 1 Zyxel 2 Zynos, Zywall 2 2024-11-21 N/A
The management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to cause a denial of service (infinite reboot loop) via invalid configuration data. NOTE: this issue might not cross privilege boundaries, and it might be resultant from CSRF; if so, then it should not be included in CVE.
CVE-2007-4318 1 Zyxel 2 Zynos, Zywall 2 2024-11-21 N/A
Cross-site scripting (XSS) vulnerability in Forms/General_1 in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to inject arbitrary web script or HTML via the sysSystemName parameter.
CVE-2007-4317 1 Zyxel 2 Zynos, Zywall 2 2024-11-21 N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allow remote attackers to perform certain actions as administrators, as demonstrated by a request to Forms/General_1 with the (1) sysSystemName and (2) sysDomainName parameters.
CVE-2007-4316 1 Zyxel 2 Zynos, Zywall 2 2024-11-21 N/A
The management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device has a certain default password, which allows remote attackers to perform administrative actions.