May 7, 2024

Zyxel patches vulnerability in NAS devices (CVE-2023-27988)

11 months ago

Zyxel has patched a high-severity authenticated command injection vulnerability (CVE-2023-27988) in some of its network attached storage (NAS) devices aimed at home users. About the vulnerability (CVE-2023-27988) The vulnerability was discovered in the devices’ web management interface. “An authenticated attacker with administrator privileges could leverage this vulnerability to execute some operating system (OS) commands on an affected device remotely,” Zyxel has confirmed. The following versions of the Zyxel NAS devices are affected: NAS326 version 5.21(AAZF.12)C0 … More

The post Zyxel patches vulnerability in NAS devices (CVE-2023-27988) appeared first on Help Net Security.

About The Author

See author's posts

More Stories

Database Leak Reveals 2.6 Million Sensitive Documents

11 hours ago admin

Smoke Alarm Data Breach

5 days ago admin

Prevent Generative AI Data Leaks with Chrome Enterprise DLP

2 weeks ago admin