Command Injection Vulnerability in Zyxel NAS Products
CVE-2023-35138

9.8CRITICAL

Key Information:

Vendor: Zyxel
Status: NAS326 firmware; NAS542 firmware
Vendor: CVE Published:; 30 November 2023

Summary

A command injection vulnerability exists in the Zyxel NAS326 and NAS542 firmware that may allow unauthorized users to execute arbitrary operating system commands. This weakness is realized through the 'show_zysync_server_contents' function, which becomes exploitable if manipulated via a specially crafted HTTP POST request. Attackers could leverage this flaw to gain control over system operations, posing significant risks to data integrity and confidentiality.

Affected Version(s)

NAS326 firmware V5.21(AAZF.14)C0

NAS542 firmware V5.21(ABAG.11)C0

References

https://www.zyxel.com/global/en/support/security-advisori...

vendor-advisory

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 30, 2023
Vulnerability Reserved
Jun 14, 2023