← ExploitWatch
HomeExploited Vulnerabilities

CVE-2017-18368 — Actively Exploited: P660HN-T1A Routers (Zyxel)

Zyxel P660HN-T1A routers contain a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user and exploited via the remote_host parameter of the ViewLog.asp page.

CVE IDCVE-2017-18368
VendorZyxel
ProductP660HN-T1A Routers
Vulnerability nameZyxel P660HN-T1A Routers Command Injection Vulnerability
Date added2023-08-07
Remediation due2023-08-28
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionZyxel P660HN-T1A routers contain a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user and exploited via the remote_host parameter of the ViewLog.asp page.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →