CISA/NIST NVD Alert - CVE-2022-30525
Multiple Firewalls - Zyxel Multiple Firewalls OS Command Injection Vulnerability
CISA/NIST Known Exploited Vulnerability Alert
CVE Identification Number
CVE-2022-30525
Vendor Name
Zyxel
Product
Multiple Firewalls
Vulnerability Name
Zyxel Multiple Firewalls OS Command Injection Vulnerability
Description of Vulnerability
A command injection vulnerability in the CGI program of some Zyxel firewall versions could allow an attacker to modify specific files and then execute some OS commands on a vulnerable device.
Date Added to CISA Known Exploited Vulnerability Database
2022-05-16
Remediation
Apply updates per vendor instructions.