VYPR
← All advisories
Unrated severityNVD Advisory· Published Nov 30, 2023· Updated Dec 16, 2025

CVE-2023-4474

CVE-2023-4474

Description

The improper neutralization of special elements in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted URL to a vulnerable device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An unauthenticated OS command injection in Zyxel NAS326 and NAS542 WSGI server allows remote code execution via crafted URL.

Vulnerability

The improper neutralization of special elements in the WSGI server of Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 firmware version V5.21(ABAG.11)C0 allows an unauthenticated attacker to execute arbitrary operating system (OS) commands by sending a crafted URL to the vulnerable device [1][2]. The flaw resides in the WSGI server component and requires no prior authentication or special configuration to be reachable.

Exploitation

An attacker only needs network access to the target NAS device. No authentication or user interaction is required. The exploitation sequence involves sending a specially crafted HTTP request containing OS command payloads in the URL to the WSGI server endpoint [1][2]. The server fails to sanitize the input, leading to command execution.

Impact

Successful exploitation allows an unauthenticated attacker to execute arbitrary OS commands on the affected NAS device. This can lead to full compromise of the device, including data exfiltration, installation of malware, and potential lateral movement within the network [1][2].

Mitigation

Zyxel released fixed firmware versions on November 16, 2023: V5.21(AAZF.15)C0 for NAS326 and V5.21(ABAG.12)C0 for NAS542 [1][2]. Users are strongly advised to update to these patched versions. No workaround is available; the only mitigation is applying the firmware update.

References
  1. Authentication Bypass Vulnerability in Embedded Firmware (Zyxel NAS Case Study)
  2. Zyxel security advisory for authentication bypass and command injection vulnerabilities in NAS products | Zyxel Networks

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Zyxel/NAS326llm-fuzzy
    Range: = V5.21(AAZF.14)C0
  • Zyxel/NAS542llm-fuzzy
    Range: = V5.21(ABAG.11)C0
  • Zyxel/NAS326 firmwarev5
    Range: V5.21(AAZF.14)C0
  • Zyxel/NAS542 firmwarev5
    Range: V5.21(ABAG.11)C0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.