VYPR
Unrated severityNVD Advisory· Published Aug 13, 2007· Updated Jun 16, 2026

CVE-2007-4317

CVE-2007-4317

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allow remote attackers to perform certain actions as administrators, as demonstrated by a request to Forms/General_1 with the (1) sysSystemName and (2) sysDomainName parameters.

Affected products

3
  • cpe:2.3:h:zyxel:zynos:3.62:*:*:*:*:*:*:*
  • Zyxel/Zywall 22 versions
    cpe:2.3:h:zyxel:zywall_2:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:zyxel:zywall_2:*:*:*:*:*:*:*:*
    • (no CPE)range: = 3.62(WK.6)

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.