CVE-2025-3577 – Zyxel AMG1302-T10B Path Traversal Vulnerability

April 22, 2025

CVE ID : CVE-2025-3577

Published : April 22, 2025, 3:15 a.m. | 3 hours, 55 minutes ago

Description : **UNSUPPORTED WHEN ASSIGNED** A path traversal vulnerability in the web management interface of the Zyxel AMG1302-T10B firmware version 2.00(AAJC.16)C0 could allow an authenticated attacker with administrator privileges to access restricted directories by sending a crafted HTTP request to an affected device.

Severity: 4.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-1731 – “USG FLEX H series PostgreSQL Command Privilege Escalation Vulnerability”

Next Article CVE-2025-1732 – “Fortinet USG FLEX H Series Privilege Escalation Vulnerability”

Highlights

CVE-2025-40911 – Apache Net::CIDR::Set IP CIDR Leading Zero Vulnerability

May 27, 2025

CVE ID : CVE-2025-40911

Published : May 27, 2025, 10:15 p.m. | 2 hours, 44 minutes ago

Description : Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses.

Leading zeros are used to indicate octal numbers, which can confuse users who are intentionally using octal notation, as well as users who believe they are using decimal notation.

Net::CIDR::Set used code from Net::CIDR::Lite, which had a similar vulnerability CVE-2021-47154.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Meta Resumes E.U. AI Training Using Public User Data After Regulator Approval

April 15, 2025

A CSS-Only Star Rating Component and More! (Part 1)

February 28, 2025

Sam Altman’s ouster from OpenAI was so dramatic that it’s apparently becoming a movie — Will we finally get the full story?

June 4, 2025

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

AI is currently in its teenage years, battling raging hormones

4 ways your organization can adapt and thrive in the age of AI

Google’s new Search tool turns financial info into interactive charts – how to try it

This rugged Android phone has something I’ve never seen on competing models

Anthropic’s new AI models for classified info are already in use by US gov

Handling PostgreSQL Migrations in Node.js

Handling PostgreSQL Migrations in Node.js

How to Add Product Badges in Optimizely Configured Commerce Spire

Salesforce Health Check Assessment Unlocks ROI

Microsoft: Run PS script now if you deleted “inetpub” on Windows 11, Windows 10

Microsoft: Run PS script now if you deleted “inetpub” on Windows 11, Windows 10

Spf Permerror Troubleshooting Guide For Better Email Deliverability Today

Amap – Gather Info in Easy Way

CVE-2025-3577 – Zyxel AMG1302-T10B Path Traversal Vulnerability

Leadership, Trust, and Cyber Hygiene: NCSC’s Guide to Security Culture in Action

CISA Alert: Critical Vulnerabilities Found in CyberData SIP Emergency Intercom Devices

Accelerate digital pathology slide annotation workflows on AWS using H-optimus-0

CVE-2025-20970 – Bixby Vision Privilege Escalation Vulnerability

Google DeepMind Researchers Unlock the Potential of Decoding-Based Regression for Tabular and Density Estimation Tasks

How to Test a Website || A Total Guide of Website Penetration Testing

CVE-2025-40911 – Apache Net::CIDR::Set IP CIDR Leading Zero Vulnerability

Meta Resumes E.U. AI Training Using Public User Data After Regulator Approval

A CSS-Only Star Rating Component and More! (Part 1)

Sam Altman’s ouster from OpenAI was so dramatic that it’s apparently becoming a movie — Will we finally get the full story?

CVE-2025-3577 – Zyxel AMG1302-T10B Path Traversal Vulnerability

Related Posts