cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-5330,https://securityvulnerability.io/vulnerability/CVE-2018-5330,,ZyXEL P-660HW v3 devices allow remote attackers to cause a denial of service (router unreachable/unresponsive) via a flood of fragmented UDP packets.,Zyxel,P-660hw V3 Firmware,7.5,HIGH,0.0022700000554323196,false,,false,false,false,,,false,false,,2018-01-16T19:00:00.000Z,0
CVE-2017-17901,https://securityvulnerability.io/vulnerability/CVE-2017-17901,,ZyXEL P-660HW v3 devices allow remote attackers to cause a denial of service (CPU consumption) via a flood of IP packets with a TTL of 1.,Zyxel,P-660hw Firmware,7.5,HIGH,0.0009800000116229057,false,,false,false,false,,,false,false,,2017-12-29T22:00:00.000Z,0
CVE-2015-6017,https://securityvulnerability.io/vulnerability/CVE-2015-6017,,Multiple cross-site scripting (XSS) vulnerabilities in Forms/rpAuth_1 on ZyXEL P-660HW-T1 2 devices with ZyNOS firmware 3.40(AXH.0) allow remote attackers to inject arbitrary web script or HTML via the (1) LoginPassword or (2) hiddenPassword parameter.,Zyxel,P-660hw-t1 V2 Firmware,6.1,MEDIUM,0.0012000000569969416,false,,false,false,false,,,false,false,,2015-12-31T02:00:00.000Z,0
CVE-2014-4162,https://securityvulnerability.io/vulnerability/CVE-2014-4162,,Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) wireless router allow remote attackers to hijack the authentication of administrators for requests that change the (1) wifi password or (2) SSID via a request to Forms/WLAN_General_1.,Zyxel,P-660hw,,,0.012640000320971012,false,,false,false,false,,,false,false,,2014-06-16T18:00:00.000Z,0
CVE-2013-3588,https://securityvulnerability.io/vulnerability/CVE-2013-3588,,The web management interface on Zyxel P660 devices allows remote attackers to cause a denial of service (reboot) via a flood of TCP SYN packets.,Zyxel,"P-660h-63,P-660hw D1,P-660hw T3,P-660hw,P-660h-61,P-660h-t1,P-660h-67,P-660h-t3,P-660hw D3,P-660h-d3,P-660h-d1",,,0.008609999902546406,false,,false,false,false,,,false,false,,2014-04-02T01:00:00.000Z,0
CVE-2013-6786,https://securityvulnerability.io/vulnerability/CVE-2013-6786,,"Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the ""forbidden author header"" protection mechanism is bypassed, allows remote attackers to inject arbitrary web script or HTML by requesting a nonexistent URI in conjunction with a crafted HTTP Referer header that is not properly handled in a 404 page.  NOTE: there is no CVE for a ""URL redirection"" issue that some sources list separately.",Zyxel,"P-660hw D1,Wl-174,Rompager,Td-8816,Mt882,Dsl-2640r,Dsl-2641r",,,0.001560000004246831,false,,false,false,false,,,false,false,,2014-01-16T19:00:00.000Z,0
CVE-2008-1255,https://securityvulnerability.io/vulnerability/CVE-2008-1255,,"The ZyXEL P-660HW series router maintains authentication state by IP address, which allows remote attackers to bypass authentication by establishing a session from a source IP address of a previously authenticated user.",Zyxel,P-660hw,,,0.009329999797046185,false,,false,false,false,,,false,false,,2008-03-10T17:00:00.000Z,0
CVE-2008-1254,https://securityvulnerability.io/vulnerability/CVE-2008-1254,,"Multiple cross-site request forgery (CSRF) vulnerabilities on the ZyXEL P-660HW series router allow remote attackers to (1) change DNS servers and (2) add keywords to the ""bannedlist"" via unspecified vectors.",Zyxel,P-660hw,,,0.004259999841451645,false,,false,false,false,,,false,false,,2008-03-10T17:00:00.000Z,0
CVE-2008-1256,https://securityvulnerability.io/vulnerability/CVE-2008-1256,,"The ZyXEL P-660HW series router has ""admin"" as its default password, which allows remote attackers to gain administrative access.",Zyxel,P-660hw,,,0.010809999890625477,false,,false,false,false,,,false,false,,2008-03-10T17:00:00.000Z,0
CVE-2008-1257,https://securityvulnerability.io/vulnerability/CVE-2008-1257,,Cross-site scripting (XSS) vulnerability in Forms/DiagGeneral_2 on the ZyXEL P-660HW series router allows remote attackers to inject arbitrary web script or HTML via the PingIPAddr parameter.,Zyxel,"P-660hw D1,P-660hw T3,P-660hw,P-660hw D3",,,0.002259999979287386,false,,false,false,false,,,false,false,,2008-03-10T17:00:00.000Z,0