Nebula Lte3301 Plus Firmware

4 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-13942 CRITICAL Act Now

Command injection in Zyxel EX3510-B0 router UPnP functionality via firmware versions through 5.17. Allows remote code execution through the UPnP service.

Zyxel Command Injection Wx5610 B0 Firmware Ee6510 10 Firmware Px3321 T1 Firmware +15
NVD
CVSS 3.1
9.8
EPSS
0.5%
CVE-2025-11847 MEDIUM This Month

A null pointer dereference vulnerability in the IP settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request. [CVSS 4.9 MEDIUM]

Zyxel Null Pointer Dereference Ex3300 T1 Firmware Ex3300 T0 Firmware Ex5601 T0 Firmware +51
NVD
CVSS 3.1
4.9
EPSS
0.1%
CVE-2025-11846 MEDIUM This Month

A null pointer dereference vulnerability in the account settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request. [CVSS 4.9 MEDIUM]

Zyxel Null Pointer Dereference Ex5512 T0 Firmware Emg5523 T50b Firmware Ex5601 T0 Firmware +51
NVD
CVSS 3.1
4.9
EPSS
0.1%
CVE-2025-11845 MEDIUM This Month

A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request. [CVSS 4.9 MEDIUM]

Zyxel Null Pointer Dereference Gm4100 B0 Firmware Emg3525 T50b Firmware Scr 50axe Firmware +51
NVD
CVSS 3.1
4.9
EPSS
0.1%
CVE-2025-13942
EPSS 0% CVSS 9.8
CRITICAL Act Now

Command injection in Zyxel EX3510-B0 router UPnP functionality via firmware versions through 5.17. Allows remote code execution through the UPnP service.

Zyxel Command Injection Wx5610 B0 Firmware +17
NVD
CVE-2025-11847
EPSS 0% CVSS 4.9
MEDIUM This Month

A null pointer dereference vulnerability in the IP settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request. [CVSS 4.9 MEDIUM]

Zyxel Null Pointer Dereference Ex3300 T1 Firmware +53
NVD
CVE-2025-11846
EPSS 0% CVSS 4.9
MEDIUM This Month

A null pointer dereference vulnerability in the account settings CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request. [CVSS 4.9 MEDIUM]

Zyxel Null Pointer Dereference Ex5512 T0 Firmware +53
NVD
CVE-2025-11845
EPSS 0% CVSS 4.9
MEDIUM This Month

A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request. [CVSS 4.9 MEDIUM]

Zyxel Null Pointer Dereference Gm4100 B0 Firmware +53
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy