** UNSUPPORTED WHEN ASSIGNED **
The remote code execution vulnerability in the CGI program “file_upload-cgi” in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated attacker to execute arbitrary code by uploading a crafted configuration file to a vulnerable device.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Zyxel
Published: 2024-06-04T01:34:11.340Z
Updated: 2024-08-02T01:17:58.668Z
Reserved: 2024-03-22T08:49:44.342Z
Link: CVE-2024-29974
Vulnrichment
Updated: 2024-08-02T01:17:58.668Z
NVD
Status : Awaiting Analysis
Published: 2024-06-04T02:15:48.517
Modified: 2024-08-02T02:15:17.627
Link: CVE-2024-29974
Redhat
No data.