cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-0890,https://securityvulnerability.io/vulnerability/CVE-2025-0890,Insecure Default Credentials Affecting Zyxel DSL CPE Firmware,"The Zyxel VMG4325-B10A DSL CPE firmware is affected by a vulnerability due to insecure default credentials associated with the Telnet function. This flaw allows unauthorized access to the management interface when the provided default credentials are not modified by administrators. As a result, attackers could exploit this oversight to gain unauthorized control, potentially leading to further compromises in network security. It is crucial for users of this device to ensure that they update the credentials to enhance their device's security.",Zyxel,Vmg4325-b10a Firmware,9.8,CRITICAL,0.01,false,,false,false,false,,false,false,false,,2025-02-04T10:06:56.163Z,0
CVE-2024-40891,https://securityvulnerability.io/vulnerability/CVE-2024-40891,Command Injection Vulnerability in Zyxel DSL CPE Firmware,"A post-authentication command injection vulnerability exists in the management commands of Zyxel VMG4325-B10A firmware version 1.00(AAFR.4)C0_20170615. This flaw allows an authenticated attacker to execute arbitrary operating system commands via Telnet, potentially compromising the security and integrity of the affected device.",Zyxel,Vmg4325-b10a Firmware,8.8,HIGH,0.01,false,,true,false,true,2025-02-04T21:22:52.000Z,false,true,true,2025-02-04T11:52:02.520Z,2025-02-04T10:02:48.018Z,5207
CVE-2024-40890,https://securityvulnerability.io/vulnerability/CVE-2024-40890,Command Injection Vulnerability in Zyxel Legacy DSL CPE,"A post-authentication command injection vulnerability exists in the CGI program of the legacy DSL CPE Zyxel VMG4325-B10A. By crafting a specific HTTP POST request, an authenticated attacker could execute arbitrary operating system commands on the affected device, potentially leading to unauthorized actions and significant security risks.",Zyxel,Vmg4325-b10a Firmware,8.8,HIGH,0.01,false,,false,false,false,,false,false,false,,2025-02-04T09:55:38.908Z,0