CVE-2021-35034

Summary

An insufficient session expiration vulnerability in the CGI program of the Zyxel NBG6604 firmware could allow a remote attacker to access the device if the correct token can be intercepted.

Affected Software

VendorProductVersion RangeStatus
ZyxelNBG6604 series firmware1.00(ABIR.8)C0affected

Weaknesses

  • CWE-613: CWE-613: Insufficient Session Expiration

ADP Enrichment

CVE Program Container

Additional References

References