Ee3301 00 Firmware

ee3301-00_firmware

Vendor: Zyxel • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-13943 1Zyxel 52Am7510 00 Firmware Ax7501 B1 FirmwareDm4200 B0 Firmware+49 more Feb 25, 2026 Feb 24, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (O...Show more A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (OS) commands on an affected device.Show less
CVE-2025-11848 1Zyxel 48Ax7501 B1 Firmware Dx3300 T0 FirmwareDx3300 T1 Firmware+45 more Feb 25, 2026 Feb 24, 2026 N/A· v4 4.9 MEDIUM· v3 N/A· v2 A null pointer dereference vulnerability in the Wake-on-LAN CGI program of the Zyxel VMG3625-T50B firmware version through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow a...Show more A null pointer dereference vulnerability in the Wake-on-LAN CGI program of the Zyxel VMG3625-T50B firmware version through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request.Show less
CVE-2025-11847 1Zyxel 54Ax7501 B1 Firmware Dx3300 T0 FirmwareDx3300 T1 Firmware+51 more Feb 25, 2026 Feb 24, 2026 N/A· v4 4.9 MEDIUM· v3 N/A· v2 A null pointer dereference vulnerability in the IP settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow...Show more A null pointer dereference vulnerability in the IP settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request.Show less
CVE-2025-11846 1Zyxel 54Ax7501 B1 Firmware Dx3300 T0 FirmwareDx3300 T1 Firmware+51 more Feb 25, 2026 Feb 24, 2026 N/A· v4 4.9 MEDIUM· v3 N/A· v2 A null pointer dereference vulnerability in the account settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could a...Show more A null pointer dereference vulnerability in the account settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request.Show less
CVE-2025-11845 1Zyxel 54Ax7501 B1 Firmware Dx3300 T0 FirmwareDx3300 T1 Firmware+51 more Feb 25, 2026 Feb 24, 2026 N/A· v4 4.9 MEDIUM· v3 N/A· v2 A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 c...Show more A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request.Show less
CVE-2025-8693 1Zyxel 54Ax7501 B0 Firmware Ax7501 B1 FirmwareDm4200 B0 Firmware+51 more Dec 15, 2025 Nov 18, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an authenticated attacker to execute operating system (OS) comman...Show more A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an authenticated attacker to execute operating system (OS) commands on an affected device.Show less
CVE-2025-6599 1Zyxel 66Ax7501 B0 Firmware Ax7501 B1 FirmwareDm4200 B0 Firmware+63 more Dec 16, 2025 Nov 18, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An uncontrolled resource consumption vulnerability in the web server of Zyxel DX3301-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an attacker to perform Slowloris‑style denial‑of‑service (DoS) attacks. Su...Show more An uncontrolled resource consumption vulnerability in the web server of Zyxel DX3301-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an attacker to perform Slowloris‑style denial‑of‑service (DoS) attacks. Such attacks may temporarily block legitimate HTTP requests and partially disrupt access to the web management interface, while other networking services remain unaffected.Show less