8.2
CVE-2022-43393
- EPSS 0.45%
- Published 11.01.2023 02:15:11
- Last modified 21.11.2024 07:26:23
- Source security@zyxel.com.tw
- Teams watchlist Login
- Open Login
An improper check for unusual or exceptional conditions in the HTTP request processing function of Zyxel GS1920-24v2 firmware prior to V4.70(ABMH.8)C0, which could allow an unauthenticated attacker to corrupt the contents of the memory and result in a denial-of-service (DoS) condition on a vulnerable device.
Data is provided by the National Vulnerability Database (NVD)
Zyxel ≫ Gs1350-6hp Firmware Version < 4.70\(abpi.5\)c0
Zyxel ≫ Gs1350-12hp Firmware Version < 4.70\(abpj.5\)c0
Zyxel ≫ Gs1350-18hp Firmware Version < 4.70\(abpk.5\)c0
Zyxel ≫ Gs1350-26hp Firmware Version < 4.70\(abpl.5\)c0
Zyxel ≫ Gs1915-8 Firmware Version < 4.70\(acap.3\)c0
Zyxel ≫ Gs1915-8ep Firmware Version < 4.70\(acaq.3\)c0
Zyxel ≫ Gs1915-24e Firmware Version < 4.70\(acdr.3\)c0
Zyxel ≫ Gs1915-24ep Firmware Version < 4.70\(acds.3\)c0
Zyxel ≫ Gs1920-24v2 Firmware Version < 4.70\(abmh.8\)c0
Zyxel ≫ Gs1920-48v2 Firmware Version < 4.70\(abmj.8\)c0
Zyxel ≫ Gs1920-24hpv2 Firmware Version < 4.70\(abmi.8\)c0
Zyxel ≫ Gs1920-48hpv2 Firmware Version < 4.70\(abmk.8\)c0
Zyxel ≫ Gs2220-10 Firmware Version < 4.70\(abro.6\)c0
Zyxel ≫ Gs2220-28 Firmware Version < 4.70\(abrq.6\)c0
Zyxel ≫ Gs2220-50 Firmware Version < 4.70\(abrs.6\)c0
Zyxel ≫ Gs2220-10hp Firmware Version < 4.70\(abrp.6\)c0
Zyxel ≫ Gs2220-28hp Firmware Version < 4.70\(abrr.6\)c0
Zyxel ≫ Gs2220-50hp Firmware Version < 4.70\(abrt.6\)c0
Zyxel ≫ Xgs1930-28 Firmware Version < 4.70\(abht.5\)c0
Zyxel ≫ Xgs1930-28hp Firmware Version < 4.70\(abhs.5\)c0
Zyxel ≫ Xgs1930-52 Firmware Version < 4.70\(abhu.5\)c0
Zyxel ≫ Xgs1930-52hp Firmware Version < 4.70\(abhv.5\)c0
Zyxel ≫ Xs1930-10 Firmware Version < 4.80\(abqe.0\)c0
Zyxel ≫ Xs1930-12hp Firmware Version < 4.80\(abqf.0\)c0
Zyxel ≫ Xs1930-12f Firmware Version < 4.80\(abzv.0\)c0
Zyxel ≫ Xgs2210-28 Firmware Version < 4.70\(aazj.2\)c0
Zyxel ≫ Xgs2210-52 Firmware Version < 4.70\(aazk.2\)c0
Zyxel ≫ Xgs2210-28hp Firmware Version < 4.70\(aazl.2\)c0
Zyxel ≫ Xgs2210-52hp Firmware Version < 4.70\(aazm.2\)c0
Zyxel ≫ Xgs2220-30 Firmware Version < 4.80\(abxn.1\)c0
Zyxel ≫ Xgs2220-30hp Firmware Version < 4.80\(abxo.1\)c0
Zyxel ≫ Xgs2220-30f Firmware Version < 4.80\(abye.1\)c0
Zyxel ≫ Xgs2220-54 Firmware Version < 4.80\(abxp.1\)c0
Zyxel ≫ Xgs2220-54hp Firmware Version < 4.80\(abxq.1\)c0
Zyxel ≫ Xgs2220-54fp Firmware Version < 4.80\(acce.1\)c0
Zyxel ≫ Xgs4600-32 Firmware Version < 4.70\(abbh.4\)c0
Zyxel ≫ Xgs4600-32f Firmware Version < 4.70\(abbi.4\)c0
Zyxel ≫ Xgs4600-52f Firmware Version < 4.70\(abik.4\)c0
Zyxel ≫ Xmg1930-30 Firmware Version < 4.80\(acar.0\)
Zyxel ≫ Xmg1930-30hp Firmware Version < 4.80\(acas.0\)
Zyxel ≫ Xs3800-28 Firmware Version <= 4.80\(abml.1\)c0
Zyxel ≫ Mgs3500-24s Firmware Version < 4.10\(abbr.2\)c0
Zyxel ≫ Mgs3520-28 Firmware Version < 4.10\(aatn.5\)c0
Zyxel ≫ Mgs3520-28 Firmware Version4.10(abqm.1)c0
Zyxel ≫ Mgs3520-28f Firmware Version < 4.10\(aatm.4\)c0
Zyxel ≫ Mgs3530-28 Firmware Version < 4.10\(acem.2\)c0
Zyxel ≫ Mgs3530-28 Firmware Version4.10(acfj.0)c0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.45% | 0.626 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 8.2 | 3.9 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
|
| security@zyxel.com.tw | 8.2 | 3.9 | 4.2 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
|
CWE-754 Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.