CVE-2017-6884 - Zyxel EMG2926 Routers Command Injection Vulnerability

Zyxel | EMG2926 Routers

• Date Added:
• 2023-09-18

• Due Date:
• 2023-10-09

Vulnerability Name

Zyxel EMG2926 Routers Command Injection Vulnerability

Description

Zyxel EMG2926 routers contain a command injection vulnerability located in the diagnostic tools, specifically the nslookup function. A malicious user may exploit numerous vectors to execute malicious commands on the router, such as the ping_ip parameter to the expert/maintenance/diagnostic/nslookup URI.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-command-injection-vulnerability-in-emg2926-q10a-ethernet-cpe, https://www.zyxelguard.com/Zyxel-EOL.asp; https://nvd.nist.gov/vuln/detail/CVE-2017-6884

Top Security News

Russian cybercrooks exploiting 7-Zip zero-day vulnerability (CVE-2025-0411)

Garmin GPS watches crashing, stuck in triangle 'reboot loop'

Microsoft fixes exploited zero-day (CVE-2024-49138)

DeepSeek Jailbreak Reveals Its Entire System Prompt

Broadcom Patches VMware Aria Flaws – Exploits May Lead to Credential Theft

Windows Server 2025 released—here are the new features

Engineering giant Smiths Group discloses security breach

Lightning AI Studio Vulnerability Could've Allowed RCE via Hidden URL Parameter

Top Alert List

Content Security Policy (CSP) Header Not Set

CSP

MediumMissing Anti-clickjacking Header

MediumAbsence of Anti-CSRF Tokens

InformationalInformation Disclosure - Suspicious Comments

MediumContent Security Policy (CSP) Header Not Set

InformationalModern Web Application

LowCross-Domain JavaScript Source File Inclusion

InformationalRe-examine Cache-control Directives

LowX-Content-Type-Options Header Missing

Latest CVE List

CVE-2024-53104 Linux Kernel Out-of-Bounds Write Vulnerability

CVE-2024-45195 Apache OFBiz Forced Browsing Vulnerability

CVE-2024-29059 Microsoft .NET Framework Information Disclosure Vulnerability

CVE-2018-9276 Paessler PRTG Network Monitor OS Command Injection Vulnerability

CVE-2018-19410 Paessler PRTG Network Monitor Local File Inclusion Vulnerability

CVE-2025-24085 Apple Multiple Products Use-After-Free Vulnerability

CVE-2025-23006 SonicWall SMA1000 Appliances Deserialization Vulnerability

CVE-2020-11023 JQuery Cross-Site Scripting (XSS) Vulnerability

CVE-2024-50603 Aviatrix Controllers OS Command Injection Vulnerability

CVE-2024-55591 Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

Common CWEs

CWE-1245 Improper Finite State Machines (FSMs) in Hardware Logic

CWE-267 Privilege Defined With Unsafe Actions

CWE-53 Path Equivalence: '\multiple\\internal\backslash'

CWE-290 Authentication Bypass by Spoofing

CWE-187 Partial String Comparison

CWE-597 Use of Wrong Operator in String Comparison

HighCWE-645 Overly Restrictive Account Lockout Mechanism

CWE-1246 Improper Write Handling in Limited-write Non-Volatile Memories

CWE-1090 Method Containing Access of a Member Element from Another Class

CWE-1253 Incorrect Selection of Fuse Values