Description
A post-authentication command injection vulnerability in the EasyMesh-related APIs of Zyxel DX3300-T0 firmware versions through 5.50(ABVY.7.1)C0 could allow an authenticated, adjacent attacker with administrator privileges to execute OS commands on an affected device.
Published: 2026-04-28
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: OS command execution via authenticated command injection
Action: Immediate Patch
AI Analysis

Impact

The vulnerability is a post‑authentication command injection flaw located in the EasyMesh‑related APIs of Zyxel DX3300‑T0 devices. An attacker who has already authenticated and possesses administrator privileges on the local network, typically an adjacent device, can exploit the flaw to execute arbitrary operating‑system commands on the affected router. This grants the attacker full control over the device, enabling further compromise or pivoting within the network.

Affected Systems

Affected are Zyxel DX3300‑T0 firmware versions up through 5.50(ABVY.7.1)C0. Devices running any of these firmware releases are vulnerable until patched or replaced.

Risk and Exploitability

The CVSS base score of 6.8 places the vulnerability in the medium severity range, but the requirement of local authentication with administrative rights limits the pool of potential attackers. The EPSS score is not available, so the exact likelihood of exploitation cannot be quantified, and the vulnerability is not currently listed in CISA’s KEV catalog. Nonetheless, an attacker who can compromise a neighboring device or gain legitimate admin access can readily trigger the flaw, making the risk significant for networks that allow such access.

Generated by OpenCVE AI on April 28, 2026 at 12:32 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Zyxel DX3300‑T0 firmware to the latest version that resolves the EasyMesh API command injection issue.
  • Temporarily disable the EasyMesh APIs or restrict access to trusted devices only if an immediate firmware upgrade is not possible.
  • Apply network segmentation and firewall rules to isolate adjacent devices from the EasyMesh API endpoints and reduce the opportunity for local attackers.

Generated by OpenCVE AI on April 28, 2026 at 12:32 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 28 Apr 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 28 Apr 2026 13:00:00 +0000

Type Values Removed Values Added
Title Post‑authentication command injection in Zyxel DX3300‑T0 EasyMesh APIs

Tue, 28 Apr 2026 04:45:00 +0000

Type Values Removed Values Added
First Time appeared Zyxel
Zyxel dx3300-t0 Firmware
Vendors & Products Zyxel
Zyxel dx3300-t0 Firmware

Tue, 28 Apr 2026 03:00:00 +0000

Type Values Removed Values Added
Description A post-authentication command injection vulnerability in the EasyMesh-related APIs of Zyxel DX3300-T0 firmware versions through 5.50(ABVY.7.1)C0 could allow an authenticated, adjacent attacker with administrator privileges to execute OS commands on an affected device.
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 6.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Zyxel Dx3300-t0 Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: Zyxel

Published:

Updated: 2026-04-28T12:57:32.236Z

Reserved: 2026-01-08T08:42:15.633Z

Link: CVE-2026-0711

cve-icon Vulnrichment

Updated: 2026-04-28T12:57:27.371Z

cve-icon NVD

Status : Received

Published: 2026-04-28T03:16:02.167

Modified: 2026-04-28T03:16:02.167

Link: CVE-2026-0711

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T12:45:31Z

Weaknesses