Rewterz Threat Advisory – Multiple Google Android Vulnerabilities
August 16, 2023Rewterz Threat Update – A Malicious Campaign Compromised Around 2,000 Citrix NetScaler Servers
August 16, 2023Rewterz Threat Advisory – Multiple Google Android Vulnerabilities
August 16, 2023Rewterz Threat Update – A Malicious Campaign Compromised Around 2,000 Citrix NetScaler Servers
August 16, 2023Severity
High
Analysis Summary
CVE-2023-33013
Zyxel NBG6604 devices could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a flaw in the NTP feature. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to execute arbitrary OS commands on the system.
Impact
- Command Execution
Indicators Of Compromise
CVE
- CVE-2023-33013
Affected Vendors
Zyxel
Affected Products
- Zyxel NBG6604 1.01(ABIR.1)C0
Remediation
Upgrade to the latest version of Zyxel NBG6604, available from the Zyxel Web site.