CVE-2026-1459

Published Feb 24, 2026

Last updated 3 months ago

CVSS high 7.2

Network

Overview

Description: A post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.7)C0 could allow an authenticated attacker with administrator privileges to execute operating system (OS) commands on an affected device.
Source: security@zyxel.com.tw
NVD status: Analyzed
Products: vmg8623-t50b_firmware, dx5401-b1_firmware, emg3525-t50b_firmware, emg5523-t50b_firmware, vmg3625-t50b_firmware, vmg3625-t50c_firmware

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.2
Impact score: 5.9
Exploitability score: 1.2
Vector string: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

security@zyxel.com.tw: CWE-78

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:zyxel:vmg8623-t50b_firmware:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "675946F8-788D-4ABE-BDBF-AE65096C9B1B",
            "versionEndIncluding": "5.50\\(abpm.9.7\\)c0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:zyxel:vmg8623-t50b:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "C3535B63-318C-4EB5-ADC8-0AF3FB443DFC",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:zyxel:dx5401-b1_firmware:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "59AA9207-A8B5-49EB-8186-277219F3F5BD",
            "versionEndIncluding": "5.17\\(abyo.7.1\\)c0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:zyxel:dx5401-b1:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "AFE5C53C-4255-4AEE-A49E-36C1A2CF10F5",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:zyxel:emg3525-t50b_firmware:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "FD74F6CA-CB8B-4EB0-AE3D-161A191DE3EF",
            "versionEndIncluding": "5.50\\(abpm.9.7\\)c0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:zyxel:emg3525-t50b:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "9259E2F6-885D-4B44-8D40-20758DA599D2",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:zyxel:emg5523-t50b_firmware:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "DA0C31A9-963F-47B1-A3BD-073B8CE474BA",
            "versionEndIncluding": "5.50\\(abpm.9.7\\)c0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:zyxel:emg5523-t50b:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "F3ECE0EB-C429-4716-ABFB-73540847EB9E",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:zyxel:vmg3625-t50b_firmware:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "17CB6CFB-DE72-427F-9BB5-D1AE5DDF0A09",
            "versionEndIncluding": "5.50\\(abpm.9.7\\)c0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:zyxel:vmg3625-t50b:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "BB5E8468-D12F-4CBE-AC7E-27D5A928A85A",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:zyxel:vmg3625-t50c_firmware:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "A2BC4B86-23E5-4966-8854-BAE4DD565812",
            "versionEndIncluding": "5.50\\(abpm.9.7\\)c0",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:zyxel:vmg3625-t50c:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E3E07638-F7CA-451D-BB96-3E8C8752AD3D",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References