Arbitrary Command Execution Vulnerability in ZyXEL PMG5318-B20A Devices

Arbitrary Command Execution Vulnerability in ZyXEL PMG5318-B20A Devices

CVE-2015-6018 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The diagnostic-ping implementation on ZyXEL PMG5318-B20A devices with firmware before 1.00(AANC.2)C0 allows remote attackers to execute arbitrary commands via the PingIPAddr parameter.

Learn more about our Web Application Penetration Testing UK.