Tag

Zyxel

2 briefs RSS

Zyxel WRE6505 v2 Command Injection Vulnerability (CVE-2026-7256)

A command injection vulnerability (CVE-2026-7256) in Zyxel WRE6505 v2 firmware allows an adjacent attacker on the LAN to execute arbitrary OS commands by sending a crafted HTTP request.

WRE6505 v2 firmware version V1.00 command injection zyxel cve-2026-7256 network device

2r 1t 1c May 12, 2026

critical advisory

Critical Command Injection Vulnerability in Zyxel Routers (CVE-2026-13942)

2 rules 1 TTP

A critical command injection vulnerability (CVE-2026-13942) in the UPnP function of Zyxel routers allows remote attackers to execute arbitrary operating system commands by sending crafted UPnP SOAP requests.

zyxel router command injection cve-2026-13942 upnp

2r 1t Feb 27, 2026