CVE Catalog

CVE-2026-7273

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

19th percentile — higher than 19% of all known CVEs

Summary

A stack-based buffer overflow vulnerability in the CGI program of Zyxel GS1900-48HPv2 firmware versions through 2.90(ABTQ.1)C0 could allow a LAN-based, unauthenticated attacker to exploit the flaw and potentially execute OS commands via a crafted HTTP request.

Risk Assessment

This vulnerability poses a risk of unauthorized access to the system, which could lead to serious security breaches within the organization.

Recommendation

It is recommended to update the firmware to the latest version to mitigate this vulnerability and to monitor network traffic for potential attack attempts.

Original NVD description (English source)

A stack-based buffer overflow vulnerability in the CGI program of Zyxel GS1900-48HPv2 firmware versions through 2.90(ABTQ.1)C0 could allow a LAN-based, unauthenticated attacker to exploit the flaw and potentially execute OS commands via a crafted HTTP request.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS