CVE-2021-35028

A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt