cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-34746,https://securityvulnerability.io/vulnerability/CVE-2022-34746,Insufficient Entropy Vulnerability in Zyxel GS1900 Series Switches,"An insufficient entropy vulnerability has been identified in the firmware of Zyxel GS1900 series switches, where the improper use of randomness sources for RSA key pair generation can lead to security risks. An unauthenticated attacker could exploit this weakness to retrieve private keys by factoring the RSA modulus found in the certificates of the web administration interface, posing significant risks to network security. Users are advised to update to firmware version V2.70 or later to mitigate this issue.",Zyxel,Zyxel Gs1900 Series Firmware,5.9,MEDIUM,0.0010999999940395355,false,,false,false,false,,,false,false,,2022-09-20T01:50:09.000Z,0
CVE-2021-35032,https://securityvulnerability.io/vulnerability/CVE-2021-35032,Command Injection Vulnerability in Zyxel GS1900 Series Firmware,"A command injection vulnerability exists in the 'libsal.so' component of the Zyxel GS1900 series firmware version 2.60. This flaw allows authenticated local users to execute arbitrary operating system commands through specially crafted function calls. Such exploitation can lead to unauthorized access and may compromise the security of the affected device. For more information, refer to the Zyxel security advisory.",Zyxel,Gs1900 Series Firmware,6.4,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-12-28T10:42:07.000Z,0
CVE-2021-35031,https://securityvulnerability.io/vulnerability/CVE-2021-35031,OS Command Injection Vulnerability in Zyxel GS1900 and XGS Series,"A vulnerability has been identified in the TFTP client of Zyxel GS1900 series, XGS1210 series, and XGS1250 series firmware that allows an authenticated LAN user to execute arbitrary operating system commands through the device's graphical user interface. This flaw could potentially lead to unauthorized access and manipulation of system-level functions, posing significant security risks to the affected network devices.",Zyxel,"Gs1900 Series Firmware,Xgs1210 Series Firmware,Xgs1250 Series Firmware",6.8,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-12-28T10:36:23.000Z,0