![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Advisory – Multiple Google Android Vulnerabilities
August 16, 2023![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Update – A Malicious Campaign Compromised Around 2,000 Citrix NetScaler Servers
August 16, 2023![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Advisory – Multiple Google Android Vulnerabilities
August 16, 2023![Rewterz](https://www.rewterz.com/wp-content/uploads/2023/01/News.jpg)
Rewterz Threat Update – A Malicious Campaign Compromised Around 2,000 Citrix NetScaler Servers
August 16, 2023Severity
High
Analysis Summary
CVE-2023-33013
Zyxel NBG6604 devices could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a flaw in the NTP feature. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to execute arbitrary OS commands on the system.
Impact
- Command Execution
Indicators Of Compromise
CVE
- CVE-2023-33013
Affected Vendors
Zyxel
Affected Products
- Zyxel NBG6604 1.01(ABIR.1)C0
Remediation
Upgrade to the latest version of Zyxel NBG6604, available from the Zyxel Web site.