CVE-2022-34747
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
A format string vulnerability in Zyxel NAS326 firmware versions prior to V5.21(AAZF.12)C0 could allow an attacker to achieve unauthorized remote code execution via a crafted UDP packet.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Zyxel | Zyxel NAS326 firmware | < V5.21(AAZF.12)C0 | affected |
Weaknesses
- CWE-134: CWE-134: Use of Externally-Controlled Format String
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.