XSS Vulnerability in Zyxel NAS 326 Affected Product by Zyxel
CVE-2019-10634
5.4MEDIUM
What is CVE-2019-10634?
An XSS vulnerability exists in the Zyxel NAS 326 that enables a remote authenticated attacker to inject arbitrary JavaScript or HTML code. This can occur through manipulation of the user, group, and file-share description fields, allowing unauthorized actions to be executed remotely within the context of the affected application.