What is the CVSS score of CVE-2025-13943?

CVE-2025-13943 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.2%.

Which versions of Am7510 00 Firmware are affected by CVE-2025-13943?

A high-severity vulnerability in Zyxel EX3301-T0 network devices allows authenticated users to execute arbitrary commands, potentially compromising network infrastructure and sensitive data.

How to fix or mitigate CVE-2025-13943?

Within 24 hours: Inventory all Zyxel EX3301-T0 devices and identify those running firmware versions through 5.50(ABVY.7)C0; restrict administrative access to trusted personnel only. Within 7 days: Monitor device logs for suspicious command patterns; implement network segmentation to isolate affected devices from critical systems. Within 30 days: Contact Zyxel for patch availability; evaluate replacement options if patches remain unavailable; test and deploy patches immediately upon release.

Am7510 00 Firmware CVE-2025-13943

HIGH

OS Command Injection (CWE-78)

2026-02-24 security@zyxel.com.tw

Command Injection Zyxel Am7510 00 Firmware Ax7501 B1 Firmware Dm4200 B0 Firmware Dx3300 T0 Firmware Dx3300 T1 Firmware Dx3301 T0 Firmware Dx4510 B0 Firmware Dx4510 B1 Firmware Dx5401 B1 Firmware Ee3301 00 Firmware Ee5301 00 Firmware Ee6510 10 Firmware Emg3525 T50b Firmware Emg5523 T50b Firmware Emg6726 B10a Firmware Ex2210 T0 Firmware Ex3300 T0 Firmware Ex3300 T1 Firmware Ex3301 T0 Firmware Ex3500 T0 Firmware Ex3501 T0 Firmware Ex3510 B0 Firmware Ex3510 B1 Firmware Ex3600 T0 Firmware Ex5401 B1 Firmware Ex5510 B0 Firmware Ex5512 T0 Firmware Ex5601 T0 Firmware Ex5601 T1 Firmware Ex7501 B0 Firmware Ex7710 B0 Firmware Gm4100 B0 Firmware Pe3301 00 Firmware Pe5301 01 Firmware Pm3100 T0 Firmware Pm5100 T0 Firmware Pm5100 T1 Firmware Pm7300 T0 Firmware Pm7500 00 Firmware Px3321 T1 Firmware Px5301 T0 Firmware Vmg3625 T50b Firmware Vmg4005 B50a Firmware Vmg4005 B60a Firmware Vmg4927 B50a Firmware Vmg8623 T50b Firmware We3300 00 Firmware We4600 00 Firmware Wx3100 T0 Firmware Wx3401 B1 Firmware Wx5600 T0 Firmware Wx5610 B0 Firmware

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

CVE Published

Feb 24, 2026 - 03:16 nvd

HIGH 8.8

DescriptionNVD

A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (OS) commands on an affected device.

AnalysisAI

Technical ContextAI

Classified as CWE-78 (OS Command Injection). Affects the log file download component of Ee5301-00 Firmware. A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (OS) commands on an affected device.

RemediationAI

Monitor vendor advisories for a patch. Restrict network access to the affected service where possible.

CVE-2025-13943 vulnerability details – vuln.today

Back

Am7510 00 Firmware CVE-2025-13943

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code