THREATOPS
THREAT OPSCVEs › CVE-2020-9054

CVE-2020-9054 — Zyxel Multiple NAS Devices OS Command Injection Vulnerability

CISA KEVExploited: confirmedZyxel

Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code.

Vulnerability details