CVE-2025-8693

HIGH EPSS 57.6%
Published Nov 18, 20257mo ago · Modified Jun 17, 20262w ago
8.8 CVSS 3.1
High
Find Similar
Published Nov 18, 2025 7mo ago
Last Modified Jun 17, 2026 2w ago

Description

A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an authenticated attacker to execute operating system (OS) commands on an affected device.

CVSS Details

Base Score
8.8
Exploitability
2.8
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
57.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-78 OS Command Injection Injection

Affected Products 112

VendorProductVersionRange
zyxeldm4200-b0_firmware* ≤5.17\(acbs.1.3\)c0
zyxeldm4200-b0*any
zyxeldx3300-t0_firmware* ≤5.50\(abvy.6.3\)c0
zyxeldx3300-t0*any
zyxeldx3300-t1_firmware* ≤5.50\(abvy.6.3\)c0
zyxeldx3300-t1*any
zyxeldx3301-t0_firmware* ≤5.50\(abvy.6.3\)c0
zyxeldx3301-t0*any
zyxeldx4510-b1_firmware* ≤5.17\(abyl.9\)c0
zyxeldx4510-b1*any
zyxeldx5401-b0_firmware* ≤5.17\(abyo.7\)b2
zyxeldx5401-b0*any
zyxeldx5401-b1_firmware* ≤5.17\(abyo.7\)b2
zyxeldx5401-b1*any
zyxelee3301-00_firmware* ≤5.63\(acmu.1.1\)c0
zyxelee3301-00*any
zyxelee5301-00_firmware* ≤5.63\(acld.1.1\)c0
zyxelee5301-00*any
zyxelee6510-10_firmware* ≤5.19\(acjq.3\)c0
zyxelee6510-10*any
zyxelex3300-t0_firmware* ≤5.50\(abvy.6.3\)c0
zyxelex3300-t0*any
zyxelex3300-t0_firmware* ≤5.50\(acdi.2.1\)c0
zyxelex3300-t0*any
zyxelex3300-t1_firmware* ≤5.50\(abvy.6.3\)c0
zyxelex3300-t1*any
zyxelex3301-t0_firmware* ≤5.50\(abvy.6.3\)c0
zyxelex3301-t0*any
zyxelex3500-t0_firmware* ≤5.44\(achr.4\)c0
zyxelex3500-t0*any
zyxelex3501-t0_firmware* ≤5.44\(achr.4\)c0
zyxelex3501-t0*any
zyxelex3510-b0_firmware* ≤5.17\(abup.15\)c0
zyxelex3510-b0*any
zyxelex3510-b1_firmware* ≤5.17\(abup.15\)c0
zyxelex3510-b1*any
zyxelex3600-t0_firmware* ≤5.70\(acif.1.2\)c0
zyxelex3600-t0*any
zyxelex5401-b0_firmware* ≤5.17\(abyo.7\)b2
zyxelex5401-b0*any
zyxelex5401-b1_firmware* ≤5.17\(abyo.7\)b2
zyxelex5401-b1*any
zyxelex5501-b0_firmware* ≤5.17\(abry.5.5\)c0
zyxelex5501-b0*any
zyxelex5510-b0_firmware* ≤5.17\(abqx.10\)c0
zyxelex5510-b0*any
zyxelex5512-t0_firmware* ≤5.70\(aceg.5\)c0
zyxelex5512-t0*any
zyxelex5601-t0_firmware* ≤5.70\(acdz.4.1\)c0
zyxelex5601-t0*any
zyxelex5601-t1_firmware* ≤5.70\(acdz.4.1\)c0
zyxelex5601-t1*any
zyxelex7501-b0_firmware* ≤5.18\(achn.2.1\)c0
zyxelex7501-b0*any
zyxelex7710-b0_firmware* ≤5.18\(acak.1.4\)c0
zyxelex7710-b0*any
zyxelemg3525-t50b_firmware* ≤5.50\(abpm.9.5\)c0
zyxelemg3525-t50b*any
zyxelemg5523-t50b_firmware* ≤5.50\(abpm.9.5\)c0
zyxelemg5523-t50b*any
zyxelemg5723-t50k_firmware* ≤5.50\(abom.8.6\)c0
zyxelemg5723-t50k*any
zyxelgm4100-b0_firmware* ≤5.18\(accl.1\)c0
zyxelgm4100-b0*any
zyxelvmg3625-t50b_firmware* ≤5.50\(abpm.9.5\)c0
zyxelvmg3625-t50b*any
zyxelvmg3927-t50k_firmware* ≤5.50\(abom.8.6\)c0
zyxelvmg3927-t50k*any
zyxelvmg4005-b50a_firmware* ≤5.17\(abqa.3\)c0
zyxelvmg4005-b50a*any
zyxelvmg4005-b60a_firmware* ≤5.17\(abqa.3\)c0
zyxelvmg4005-b60a*any
zyxelvmg4005-b50b_firmware* ≤5.13\(abrl.5.3\)c0
zyxelvmg4005-b50b*any
zyxelvmg8623-t50b_firmware* ≤5.50\(abpm.9.5\)c0
zyxelvmg8623-t50b*any
zyxelvmg8825-t50k_firmware* ≤5.50\(abom.8.6\)c0
zyxelvmg8825-t50k*any
zyxelax7501-b0_firmware* ≤5.17\(abpc.6.1\)c0
zyxelax7501-b0*any
zyxelax7501-b1_firmware* ≤5.17\(abpc.6.1\)c0
zyxelax7501-b1*any
zyxelpe3301-00_firmware* ≤5.63\(acmt.1.1\)c0
zyxelpe3301-00*any
zyxelpe5301-01_firmware* ≤5.63\(acoj.1.1\)c0
zyxelpe5301-01*any
zyxelpm3100-t0_firmware* ≤5.42\(acbf.3\)c0
zyxelpm3100-t0*any
zyxelpm5100-t0_firmware* ≤5.42\(acbf.3\)c0
zyxelpm5100-t0*any
zyxelpm7500-00_firmware* ≤5.61\(ackk.1\)c0
zyxelpm7500-00*any
zyxelpm7300-t0_firmware* ≤5.42\(abyy.3\)c0
zyxelpm7300-t0*any
zyxelpx3321-t1_firmware* ≤5.44\(acjb.1.3\)c0
zyxelpx3321-t1*any
zyxelpx3321-t1_firmware* ≤5.44\(achk.1\)c0
zyxelpx3321-t1*any
zyxelpx5301-t0_firmware* ≤5.44\(ackb.0.4\)c0
zyxelpx5301-t0*any
zyxelwe3300-00_firmware* ≤5.70\(acka.0\)c0
zyxelwe3300-00*any
zyxelwx3100-t0_firmware* ≤5.50\(abvl.4.7\)c0
zyxelwx3100-t0*any
zyxelwx3401-b0_firmware* ≤5.17\(abve.2.8\)c0
zyxelwx3401-b0*any
zyxelwx3401-b1_firmware* ≤5.17\(abve.2.8\)c0
zyxelwx3401-b1*any
zyxelwx5600-t0_firmware* ≤5.70\(aceb.4.1\)c0
zyxelwx5600-t0*any
zyxelwx5610-b0_firmware* ≤5.18\(acgj.0.3\)c0
zyxelwx5610-b0*any

References 1

  • zyxel.com https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-uncontrolled-resource-consumption-and-command-injection-vulnerabilities-in-certain-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-security-routers-and-wireless-extenders-11-18-2025
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.