CVE-2017-6884CISA KEVEPSS p98.4%

CVE-2017-6884Zyxel EMG2926 Routers Command Injection Vulnerability

Zyxel / EMG2926 Routers

Description

Zyxel EMG2926 routers contain a command injection vulnerability located in the diagnostic tools, specifically the nslookup function. A malicious user may exploit numerous vectors to execute malicious commands on the router, such as the ping_ip parameter to the expert/maintenance/diagnostic/nslookup URI.

Scoring

EPSS37.63% probability of exploitation · percentile 98.4% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2023-09-18

(incoming)1

TypeTargetConfidenceTier
KEVEntryZyxel EMG2926 Routers Command Injection Vulnerabilitykev-cve-2017-68840%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Zyxel P660HN-T1A Routers Command Injection Vulnerability
CVE
NETGEAR DGN2200 Devices OS Command Injection Vulnerability
CVE
Zyxel DSL CPE OS Command Injection Vulnerability
CVE
Zyxel Multiple Firewalls OS Command Injection Vulnerability
CVE
CVE-2025-8693
CVE
D-Link DIR-820 Router OS Command Injection Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.