1. Home
  2. Vulnerabilities
  3. CVE-2025-13943
8.8
HIGH CVSS 3.1
CVE-2025-13943
Zyxel EX3301-T0 Post-Authentication Command Injection Vulnerability
Description

A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (OS) commands on an affected device.

INFO

Published Date :

Feb. 24, 2026, 3:16 a.m.

Last Modified :

Feb. 25, 2026, 6:13 p.m.

Remotely Exploit :

Yes !

Source :

[email protected]
Affected Products

The following products are affected by CVE-2025-13943 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Zyxel dx3301-t0_firmware
2 Zyxel dx4510-b1_firmware
3 Zyxel emg3525-t50b_firmware
4 Zyxel emg5523-t50b_firmware
5 Zyxel ex3301-t0_firmware
6 Zyxel ex3510-b0_firmware
7 Zyxel ex5510-b0_firmware
8 Zyxel ex5512-t0_firmware
9 Zyxel ex5601-t0_firmware
10 Zyxel ex5601-t1_firmware
11 Zyxel vmg4005-b50a_firmware
12 Zyxel vmg4005-b60a_firmware
13 Zyxel vmg8623-t50b_firmware
14 Zyxel pm3100-t0_firmware
15 Zyxel pm5100-t0_firmware
16 Zyxel pm7300-t0_firmware
17 Zyxel wx3100-t0_firmware
18 Zyxel wx5600-t0_firmware
19 Zyxel vmg3625-t50b_firmware
20 Zyxel emg6726-b10a_firmware
21 Zyxel vmg4927-b50a_firmware
22 Zyxel wx5600-t0
23 Zyxel wx3100-t0
24 Zyxel px3321-t1_firmware
25 Zyxel px3321-t1
26 Zyxel pm7300-t0
27 Zyxel pm5100-t0
28 Zyxel pm3100-t0
29 Zyxel ax7501-b1_firmware
30 Zyxel ax7501-b1
31 Zyxel vmg8623-t50b
32 Zyxel vmg4005-b60a
33 Zyxel vmg4005-b50a
34 Zyxel vmg3625-t50b
35 Zyxel emg5523-t50b
36 Zyxel emg3525-t50b
37 Zyxel ex7710-b0_firmware
38 Zyxel ex7710-b0
39 Zyxel ex7501-b0_firmware
40 Zyxel ex7501-b0
41 Zyxel ex5601-t1
42 Zyxel ex5601-t0
43 Zyxel ex5512-t0
44 Zyxel ex5510-b0
45 Zyxel ex5401-b1_firmware
46 Zyxel ex5401-b1
47 Zyxel ex3510-b0
48 Zyxel ex3501-t0_firmware
49 Zyxel ex3501-t0
50 Zyxel ex3500-t0_firmware
51 Zyxel ex3500-t0
52 Zyxel ex3301-t0
53 Zyxel ex3300-t1_firmware
54 Zyxel ex3300-t1
55 Zyxel ex3300-t0_firmware
56 Zyxel ex3300-t0
57 Zyxel dx5401-b1_firmware
58 Zyxel dx5401-b1
59 Zyxel dx4510-b0_firmware
60 Zyxel dx4510-b0
61 Zyxel dx3301-t0
62 Zyxel dx3300-t1_firmware
63 Zyxel dx3300-t1
64 Zyxel dx3300-t0_firmware
65 Zyxel dx3300-t0
66 Zyxel ex3600-t0_firmware
67 Zyxel ex3600-t0
68 Zyxel ex3510-b1_firmware
69 Zyxel ex3510-b1
70 Zyxel dx4510-b1
71 Zyxel emg6726-b10a
72 Zyxel vmg4927-b50a
73 Zyxel ee6510-10_firmware
74 Zyxel ee6510-10
75 Zyxel ex2210-t0_firmware
76 Zyxel ex2210-t0
77 Zyxel px5301-t0_firmware
78 Zyxel px5301-t0
79 Zyxel wx3401-b1_firmware
80 Zyxel wx3401-b1
81 Zyxel wx5610-b0_firmware
82 Zyxel wx5610-b0
83 Zyxel dm4200-b0_firmware
84 Zyxel dm4200-b0
85 Zyxel ee3301-00_firmware
86 Zyxel ee3301-00
87 Zyxel ee5301-00_firmware
88 Zyxel ee5301-00
89 Zyxel gm4100-b0_firmware
90 Zyxel gm4100-b0
91 Zyxel pe3301-00_firmware
92 Zyxel pe3301-00
93 Zyxel pe5301-01_firmware
94 Zyxel pe5301-01
95 Zyxel pm7500-00_firmware
96 Zyxel pm7500-00
97 Zyxel we3300-00_firmware
98 Zyxel we3300-00
99 Zyxel pm5100-t1_firmware
100 Zyxel pm5100-t1
101 Zyxel we4600-00_firmware
102 Zyxel we4600-00
103 Zyxel am7510-00_firmware
104 Zyxel am7510-00
: Total Affected Vendor : 1 | Products : 104
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 3.1 HIGH 96e50032-ad0d-4058-a115-4d2c13821f9f
CVSS 3.1 HIGH [email protected]
CVSS 3.1 HIGH [email protected]
Solution
Update firmware to patch post-authentication command injection in log download.
  • Update Zyxel EX3301-T0 firmware to a non-vulnerable version.
  • Restrict access to the log download function.
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2025-13943.

URL Resource
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-null-pointer-dereference-and-command-injection-vulnerabilities-in-certain-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-security-routers-and-wireless-extenders-02-24-2026 Vendor Advisory
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2025-13943 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2025-13943 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2025-13943 vulnerability anywhere in the article.

  • Daily CyberSecurity
Total Takeover: Critical Zyxel Flaw (CVSS 9.8) Exposes Routers to Remote Command Injection

Networking giant Zyxel has rolled out a wave of urgent security patches addressing multiple vulnerabilities across its fleet of 4G LTE/5G NR CPEs, DSL/Ethernet routers, Fiber ONTs, and Wireless Extend ... Read more

Published Date: Feb 25, 2026 (23 hours, 8 minutes ago)

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2025-13943 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Feb. 25, 2026

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ee5301-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.63(acld.2.1)c0 OR cpe:2.3:h:zyxel:ee5301-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ee3301-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.63(acmu.2.1)c0 OR cpe:2.3:h:zyxel:ee3301-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dx5401-b1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abyo.7.1)c0 OR cpe:2.3:h:zyxel:dx5401-b1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dx4510-b1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abyl.10.1)c0 OR cpe:2.3:h:zyxel:dx4510-b1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dx4510-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abyl.10.1)c0 OR cpe:2.3:h:zyxel:dx4510-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dx3301-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvy.7.1)c0 OR cpe:2.3:h:zyxel:dx3301-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dx3300-t1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvy.7.1)c0 OR cpe:2.3:h:zyxel:dx3300-t1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dx3300-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvy.7.1)c0 OR cpe:2.3:h:zyxel:dx3300-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ee6510-10_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.19(acjq.4.1)c0 OR cpe:2.3:h:zyxel:ee6510-10:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:emg3525-t50b_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abpm.9.7)c0 OR cpe:2.3:h:zyxel:emg3525-t50b:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:emg5523-t50b_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abpm.9.7)c0 OR cpe:2.3:h:zyxel:emg5523-t50b:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex2210-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(acdi.2.3)c0 OR cpe:2.3:h:zyxel:ex2210-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3300-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvy.7.1)c0 OR cpe:2.3:h:zyxel:ex3300-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3300-t1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvy.7.1)c0 OR cpe:2.3:h:zyxel:ex3300-t1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3301-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvy.7.1)c0 OR cpe:2.3:h:zyxel:ex3301-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3500-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.44(achr.5.1)c0 OR cpe:2.3:h:zyxel:ex3500-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3501-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.44(achr.5.1)c0 OR cpe:2.3:h:zyxel:ex3501-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3510-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abup.15.2)c0 OR cpe:2.3:h:zyxel:ex3510-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3510-b1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abup.15.2)c0 OR cpe:2.3:h:zyxel:ex3510-b1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex3600-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.70(acif.2.1)c0 OR cpe:2.3:h:zyxel:ex3600-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex5401-b1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abyo.7.1)c0 OR cpe:2.3:h:zyxel:ex5401-b1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex5510-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abqx.11.1)c0 OR cpe:2.3:h:zyxel:ex5510-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex5512-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.70(aceg.5.3)c0 OR cpe:2.3:h:zyxel:ex5512-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex5601-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.70(acdz.5.1)c0 OR cpe:2.3:h:zyxel:ex5601-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex5601-t1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.70(acdz.5.1)c0 OR cpe:2.3:h:zyxel:ex5601-t1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex7501-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.18(achn.3.1)c0 OR cpe:2.3:h:zyxel:ex7501-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ex7710-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.18(acak.1.6)c0 OR cpe:2.3:h:zyxel:ex7710-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:gm4100-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.18(accl.2)c0 OR cpe:2.3:h:zyxel:gm4100-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pm7500-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.61(ackk.1.2)c0 OR cpe:2.3:h:zyxel:pm7500-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:vmg3625-t50b_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abpm.9.7)c0 OR cpe:2.3:h:zyxel:vmg3625-t50b:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:vmg4005-b50a_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abqa.3.2)c0 OR cpe:2.3:h:zyxel:vmg4005-b50a:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:vmg4005-b60a_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abqa.3.2)c0 OR cpe:2.3:h:zyxel:vmg4005-b60a:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:ax7501-b1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abpc.7.1)c0 OR cpe:2.3:h:zyxel:ax7501-b1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pe3301-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.63(acmt.2.1)c0 OR cpe:2.3:h:zyxel:pe3301-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pe5301-01_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.63(acoj.2.1)c0 OR cpe:2.3:h:zyxel:pe5301-01:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pm3100-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.42(acbf.4.1)c0 OR cpe:2.3:h:zyxel:pm3100-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pm5100-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.42(acbf.4.1)c0 OR cpe:2.3:h:zyxel:pm5100-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pm5100-t1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.42(acbf.4.1)c0 OR cpe:2.3:h:zyxel:pm5100-t1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:pm7300-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.42(abyy.4.1)c0 OR cpe:2.3:h:zyxel:pm7300-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:px3321-t1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.44(achk.3)c0 OR cpe:2.3:h:zyxel:px3321-t1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:px3321-t1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.44(acjb.1.5)c0 OR cpe:2.3:h:zyxel:px3321-t1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:px5301-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.44(ackb.0.6)c0 OR cpe:2.3:h:zyxel:px5301-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:vmg8623-t50b_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abpm.9.7)c0 OR cpe:2.3:h:zyxel:vmg8623-t50b:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:we3300-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.70(acka.1.1)c0 OR cpe:2.3:h:zyxel:we3300-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:wx3100-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.50(abvl.4.9)c0 OR cpe:2.3:h:zyxel:wx3100-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:wx3401-b1_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(abve.2.10)c0 OR cpe:2.3:h:zyxel:wx3401-b1:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:wx5600-t0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.70(aceb.5.1)c0 OR cpe:2.3:h:zyxel:wx5600-t0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:wx5610-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.18(acgj.0.5)c0 OR cpe:2.3:h:zyxel:wx5610-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:dm4200-b0_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.17(acbs.1.6)c0 OR cpe:2.3:h:zyxel:dm4200-b0:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:we4600-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 6.70(ackt.0)c0 OR cpe:2.3:h:zyxel:we4600-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:emg6726-b10a_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.13(abnp.8.2)c1 OR cpe:2.3:h:zyxel:emg6726-b10a:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:am7510-00_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.63(acoe.0.1)c0 OR cpe:2.3:h:zyxel:am7510-00:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:zyxel:vmg4927-b50a_firmware:*:*:*:*:*:*:*:* versions up to (excluding) 5.13(ably.10.2)c0 OR cpe:2.3:h:zyxel:vmg4927-b50a:-:*:*:*:*:*:*:*
    Added Reference Type Zyxel Corporation: https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-null-pointer-dereference-and-command-injection-vulnerabilities-in-certain-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-security-routers-and-wireless-extenders-02-24-2026 Types: Vendor Advisory
  • New CVE Received by [email protected]

    Feb. 24, 2026

    Action Type Old Value New Value
    Added Description A post-authentication command injection vulnerability in the log file download function of the Zyxel EX3301-T0 firmware versions through 5.50(ABVY.7)C0 could allow an authenticated attacker to execute operating system (OS) commands on an affected device.
    Added CVSS V3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    Added CWE CWE-78
    Added Reference https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-null-pointer-dereference-and-command-injection-vulnerabilities-in-certain-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-security-routers-and-wireless-extenders-02-24-2026
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
Base CVSS Score: 8.8
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact