KEVIntel
Back to KEVs
9.8
CVSS
Critical

CVE-2024-29973

PUBLISHED

** UNSUPPORTED WHEN ASSIGNED ** The command injection vulnerability in the “setCookie” parameter in Zyxel NAS326 firmware versions before...

PoC available Remote Low complexity No user interaction
Vendor
Zyxel
Product
NAS326 firmware, NAS542 firmware
Published
Jun 04, 2024
EPSS

Description

** UNSUPPORTED WHEN ASSIGNED ** The command injection vulnerability in the “setCookie” parameter in Zyxel NAS326 firmware versions before V5.21(AAZF.17)C0 and NAS542 firmware versions before V5.21(ABAG.14)C0 could allow an unauthenticated attacker to execute some operating system (OS) commands by sending a crafted HTTP POST request.

nuclei_scanner

CVSS scores

CVSS v3.1 9.8 Critical

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitation status

Proof of concept available

Recorded 2024-06-19 09:28:46 UTC · Source

SSVC decision points

Exploitation
poc
Automatable
Yes
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
The Shadowserver (via CIRCL) Jun 26, 2025

Scanner integrations

Scanner Reference Detected
Nuclei https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-29973.yaml Apr 25, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

RevoltSecurities/CVE-2024-29973

github · Created 2024-06-21 15:20:52 UTC · 7 stars

Exploiter a Vulnerability detection and Exploitation tool for CVE-2024-29973 with Asychronous Performance.

k3lpi3b4nsh33/CVE-2024-29973

github · Created 2024-06-20 01:52:35 UTC · 10 stars

bigb0x/CVE-2024-29973

github · Created 2024-06-19 10:34:56 UTC · 8 stars

POC for CVE-2024-29973

momika233/CVE-2024-29973

github · Created 2024-06-19 09:28:46 UTC · 3 stars

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Proof of Concept Exploit Available

  • Detected by Nuclei

  • Added to KEVIntel