cvedb.io
CVE-2021-35031
MEDIUM · CVSS 6.8
EPSS exploitation probability: 0%
Published 2021-12-28T11:15:07.463 · Last modified 2026-06-17T03:56:58.753

Summary

A vulnerability in the TFTP client of Zyxel GS1900 series firmware, XGS1210 series firmware, and XGS1250 series firmware, which could allow an authenticated LAN user to execute arbitrary OS commands via the GUI of the vulnerable device.

Affected products

zyxel — gs1900-8_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when zyxel ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.