← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-30525 — Actively Exploited: Multiple Firewalls (Zyxel)

A command injection vulnerability in the CGI program of some Zyxel firewall versions could allow an attacker to modify specific files and then execute some OS commands on a vulnerable device.

CVE IDCVE-2022-30525
VendorZyxel
ProductMultiple Firewalls
Vulnerability nameZyxel Multiple Firewalls OS Command Injection Vulnerability
Date added2022-05-16
Remediation due2022-06-06
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionA command injection vulnerability in the CGI program of some Zyxel firewall versions could allow an attacker to modify specific files and then execute some OS commands on a vulnerable device.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →