all InfoSec news
Command Injection Vulnerability Found in Zyxel NAS Devices (CVE-2023-27988)
May 30, 2023, 5:43 p.m. | /u/mesok8
cybersecurity www.reddit.com
This issue allowed authenticated users to execute arbitrary system commands with root privileges, having a vulnerability like this could lead to a ton of unexpected attacks and modifications of the system.
Zyxel was alerted and issued a security patch on May 30, 2023. Kudos to Zyxel for their prompt response instead of ignoring the alerts and not taking any action.
Thought I’d make this post …
attacks command command injection cve cybersecurity devices injection issue linux nas privileges researchers root system ton vulnerability zyxel
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Cybersecurity Engineer III
@ Hexagon US Federal | Huntsville, AL
Cybersecurity Technical Advisor
@ Microsoft | Reading, Berkshire, United Kingdom
Cybersecurity Engineer
@ Mindvalley | Kuala Lumpur, Kuala Lumpur, Malaysia
Network Security (Meraki) Infrastructure Lead
@ Sopra Steria | Noida, Uttar Pradesh, India
Sr. Director, Product Security
@ Ro | New York City or Remote
Senior Research Engineer, Cryptography (PhD Entry Level)
@ Seagate Technology | Shakopee, MN, US