CVE-2017-17550
-
ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected by a CSRF vulnerability via a cgi-bin/zysh-cgi cmd action to add a user account. This account's access could, for example, subsequently be used for stored XSS.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17550
© Lightnetics 2024