CVE-2025-8693

A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0 firmware version 5.50(ABVY.6.3)C0 and earlier could allow an authenticated attacker to execute operating system (OS) commands on an affected device.

Published: 2025-11-17 Last update: 2026-06-17 Assigner: [email protected] Source: [email protected]
NVD Status:AnalyzedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2025-8693 is rated Moderate Risk (55.8/100): CVSS High severity, with medium exploitation likelihood (EPSS 0.96%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2025-8693

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.15% 0.96% +0.81%
2 2026-06-14 0.12% 0.15% +0.03%
3 2026-04-16 0.12%

Full EPSS history (7 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2025-8693

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
8.8 3.1 HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Click to expand
Attack vector (AV:N)
Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L)
A normal user session is enough; they don’t have to be admin.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U)
Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:H)
They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H)
Could take the service down hard or make it unusable for people who depend on it.
 2.8 5.9 [email protected]

Weakness enumeration for CVE-2025-8693

Affected software / configurations for CVE-2025-8693

Vendor Product Version Raw CPE
zyxel dm4200-b0_firmware <= 5.17\(acbs.1.3\)c0 cpe:2.3:o:zyxel:dm4200-b0_firmware:*:*:*:*:*:*:*:*
zyxel dx3300-t0_firmware <= 5.50\(abvy.6.3\)c0 cpe:2.3:o:zyxel:dx3300-t0_firmware:*:*:*:*:*:*:*:*
zyxel dx3300-t1_firmware <= 5.50\(abvy.6.3\)c0 cpe:2.3:o:zyxel:dx3300-t1_firmware:*:*:*:*:*:*:*:*
zyxel dx3301-t0_firmware <= 5.50\(abvy.6.3\)c0 cpe:2.3:o:zyxel:dx3301-t0_firmware:*:*:*:*:*:*:*:*
zyxel dx4510-b1_firmware <= 5.17\(abyl.9\)c0 cpe:2.3:o:zyxel:dx4510-b1_firmware:*:*:*:*:*:*:*:*
zyxel dx5401-b0_firmware <= 5.17\(abyo.7\)b2 cpe:2.3:o:zyxel:dx5401-b0_firmware:*:*:*:*:*:*:*:*
zyxel dx5401-b1_firmware <= 5.17\(abyo.7\)b2 cpe:2.3:o:zyxel:dx5401-b1_firmware:*:*:*:*:*:*:*:*
zyxel ee3301-00_firmware <= 5.63\(acmu.1.1\)c0 cpe:2.3:o:zyxel:ee3301-00_firmware:*:*:*:*:*:*:*:*
zyxel ee5301-00_firmware <= 5.63\(acld.1.1\)c0 cpe:2.3:o:zyxel:ee5301-00_firmware:*:*:*:*:*:*:*:*
zyxel ee6510-10_firmware <= 5.19\(acjq.3\)c0 cpe:2.3:o:zyxel:ee6510-10_firmware:*:*:*:*:*:*:*:*
zyxel ex3300-t0_firmware <= 5.50\(abvy.6.3\)c0 cpe:2.3:o:zyxel:ex3300-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex3300-t0_firmware <= 5.50\(acdi.2.1\)c0 cpe:2.3:o:zyxel:ex3300-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex3300-t1_firmware <= 5.50\(abvy.6.3\)c0 cpe:2.3:o:zyxel:ex3300-t1_firmware:*:*:*:*:*:*:*:*
zyxel ex3301-t0_firmware <= 5.50\(abvy.6.3\)c0 cpe:2.3:o:zyxel:ex3301-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex3500-t0_firmware <= 5.44\(achr.4\)c0 cpe:2.3:o:zyxel:ex3500-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex3501-t0_firmware <= 5.44\(achr.4\)c0 cpe:2.3:o:zyxel:ex3501-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex3510-b0_firmware <= 5.17\(abup.15\)c0 cpe:2.3:o:zyxel:ex3510-b0_firmware:*:*:*:*:*:*:*:*
zyxel ex3510-b1_firmware <= 5.17\(abup.15\)c0 cpe:2.3:o:zyxel:ex3510-b1_firmware:*:*:*:*:*:*:*:*
zyxel ex3600-t0_firmware <= 5.70\(acif.1.2\)c0 cpe:2.3:o:zyxel:ex3600-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex5401-b0_firmware <= 5.17\(abyo.7\)b2 cpe:2.3:o:zyxel:ex5401-b0_firmware:*:*:*:*:*:*:*:*
zyxel ex5401-b1_firmware <= 5.17\(abyo.7\)b2 cpe:2.3:o:zyxel:ex5401-b1_firmware:*:*:*:*:*:*:*:*
zyxel ex5501-b0_firmware <= 5.17\(abry.5.5\)c0 cpe:2.3:o:zyxel:ex5501-b0_firmware:*:*:*:*:*:*:*:*
zyxel ex5510-b0_firmware <= 5.17\(abqx.10\)c0 cpe:2.3:o:zyxel:ex5510-b0_firmware:*:*:*:*:*:*:*:*
zyxel ex5512-t0_firmware <= 5.70\(aceg.5\)c0 cpe:2.3:o:zyxel:ex5512-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex5601-t0_firmware <= 5.70\(acdz.4.1\)c0 cpe:2.3:o:zyxel:ex5601-t0_firmware:*:*:*:*:*:*:*:*
zyxel ex5601-t1_firmware <= 5.70\(acdz.4.1\)c0 cpe:2.3:o:zyxel:ex5601-t1_firmware:*:*:*:*:*:*:*:*
zyxel ex7501-b0_firmware <= 5.18\(achn.2.1\)c0 cpe:2.3:o:zyxel:ex7501-b0_firmware:*:*:*:*:*:*:*:*
zyxel ex7710-b0_firmware <= 5.18\(acak.1.4\)c0 cpe:2.3:o:zyxel:ex7710-b0_firmware:*:*:*:*:*:*:*:*
zyxel emg3525-t50b_firmware <= 5.50\(abpm.9.5\)c0 cpe:2.3:o:zyxel:emg3525-t50b_firmware:*:*:*:*:*:*:*:*
zyxel emg5523-t50b_firmware <= 5.50\(abpm.9.5\)c0 cpe:2.3:o:zyxel:emg5523-t50b_firmware:*:*:*:*:*:*:*:*
zyxel emg5723-t50k_firmware <= 5.50\(abom.8.6\)c0 cpe:2.3:o:zyxel:emg5723-t50k_firmware:*:*:*:*:*:*:*:*
zyxel gm4100-b0_firmware <= 5.18\(accl.1\)c0 cpe:2.3:o:zyxel:gm4100-b0_firmware:*:*:*:*:*:*:*:*
zyxel vmg3625-t50b_firmware <= 5.50\(abpm.9.5\)c0 cpe:2.3:o:zyxel:vmg3625-t50b_firmware:*:*:*:*:*:*:*:*
zyxel vmg3927-t50k_firmware <= 5.50\(abom.8.6\)c0 cpe:2.3:o:zyxel:vmg3927-t50k_firmware:*:*:*:*:*:*:*:*
zyxel vmg4005-b50a_firmware <= 5.17\(abqa.3\)c0 cpe:2.3:o:zyxel:vmg4005-b50a_firmware:*:*:*:*:*:*:*:*
zyxel vmg4005-b60a_firmware <= 5.17\(abqa.3\)c0 cpe:2.3:o:zyxel:vmg4005-b60a_firmware:*:*:*:*:*:*:*:*
zyxel vmg4005-b50b_firmware <= 5.13\(abrl.5.3\)c0 cpe:2.3:o:zyxel:vmg4005-b50b_firmware:*:*:*:*:*:*:*:*
zyxel vmg8623-t50b_firmware <= 5.50\(abpm.9.5\)c0 cpe:2.3:o:zyxel:vmg8623-t50b_firmware:*:*:*:*:*:*:*:*
zyxel vmg8825-t50k_firmware <= 5.50\(abom.8.6\)c0 cpe:2.3:o:zyxel:vmg8825-t50k_firmware:*:*:*:*:*:*:*:*
zyxel ax7501-b0_firmware <= 5.17\(abpc.6.1\)c0 cpe:2.3:o:zyxel:ax7501-b0_firmware:*:*:*:*:*:*:*:*
zyxel ax7501-b1_firmware <= 5.17\(abpc.6.1\)c0 cpe:2.3:o:zyxel:ax7501-b1_firmware:*:*:*:*:*:*:*:*
zyxel pe3301-00_firmware <= 5.63\(acmt.1.1\)c0 cpe:2.3:o:zyxel:pe3301-00_firmware:*:*:*:*:*:*:*:*
zyxel pe5301-01_firmware <= 5.63\(acoj.1.1\)c0 cpe:2.3:o:zyxel:pe5301-01_firmware:*:*:*:*:*:*:*:*
zyxel pm3100-t0_firmware <= 5.42\(acbf.3\)c0 cpe:2.3:o:zyxel:pm3100-t0_firmware:*:*:*:*:*:*:*:*
zyxel pm5100-t0_firmware <= 5.42\(acbf.3\)c0 cpe:2.3:o:zyxel:pm5100-t0_firmware:*:*:*:*:*:*:*:*
zyxel pm7500-00_firmware <= 5.61\(ackk.1\)c0 cpe:2.3:o:zyxel:pm7500-00_firmware:*:*:*:*:*:*:*:*
zyxel pm7300-t0_firmware <= 5.42\(abyy.3\)c0 cpe:2.3:o:zyxel:pm7300-t0_firmware:*:*:*:*:*:*:*:*
zyxel px3321-t1_firmware <= 5.44\(acjb.1.3\)c0 cpe:2.3:o:zyxel:px3321-t1_firmware:*:*:*:*:*:*:*:*
zyxel px3321-t1_firmware <= 5.44\(achk.1\)c0 cpe:2.3:o:zyxel:px3321-t1_firmware:*:*:*:*:*:*:*:*
zyxel px5301-t0_firmware <= 5.44\(ackb.0.4\)c0 cpe:2.3:o:zyxel:px5301-t0_firmware:*:*:*:*:*:*:*:*
zyxel we3300-00_firmware <= 5.70\(acka.0\)c0 cpe:2.3:o:zyxel:we3300-00_firmware:*:*:*:*:*:*:*:*
zyxel wx3100-t0_firmware <= 5.50\(abvl.4.7\)c0 cpe:2.3:o:zyxel:wx3100-t0_firmware:*:*:*:*:*:*:*:*
zyxel wx3401-b0_firmware <= 5.17\(abve.2.8\)c0 cpe:2.3:o:zyxel:wx3401-b0_firmware:*:*:*:*:*:*:*:*
zyxel wx3401-b1_firmware <= 5.17\(abve.2.8\)c0 cpe:2.3:o:zyxel:wx3401-b1_firmware:*:*:*:*:*:*:*:*
zyxel wx5600-t0_firmware <= 5.70\(aceb.4.1\)c0 cpe:2.3:o:zyxel:wx5600-t0_firmware:*:*:*:*:*:*:*:*
zyxel wx5610-b0_firmware <= 5.18\(acgj.0.3\)c0 cpe:2.3:o:zyxel:wx5610-b0_firmware:*:*:*:*:*:*:*:*

References for CVE-2025-8693

cvelogic Threat Intelligence