Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Zyxel Subscribe
Filtered by product Zywall 2 Plus Internet Security Appliance
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-46387 1 Zyxel 2 Zywall 2 Plus Internet Security Appliance, Zywall 2 Plus Internet Security Appliance Firmware 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
ZyXEL ZyWALL 2 Plus Internet Security Appliance is affected by Cross Site Scripting (XSS). Insecure URI handling leads to bypass security restriction to achieve Cross Site Scripting, which allows an attacker able to execute arbitrary JavaScript codes to perform multiple attacks such as clipboard hijacking and session hijacking.