4.9

CVE-2025-11845

A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ZyxelLte3301-plus Firmware Version < 1.00\(abqu.9\)c0
   ZyxelLte3301-plus Version-
ZyxelNebula Fwa505 Firmware Version < 1.60\(acko.2\)v0
   ZyxelNebula Fwa505 Version-
ZyxelNebula Fwa510 Firmware Version < 1.60\(acgd.0\)c0
   ZyxelNebula Fwa510 Version-
ZyxelNebula Fwa515 Firmware Version < 1.60\(acpz.0\)v0
   ZyxelNebula Fwa515 Version-
ZyxelNebula Fwa710 Firmware Version < 1.60\(acgc.1\)v0
   ZyxelNebula Fwa710 Version-
ZyxelEe5301-00 Firmware Version < 5.63\(acld.2.1\)c0
   ZyxelEe5301-00 Version-
ZyxelEe3301-00 Firmware Version < 5.63\(acmu.2.1\)c0
   ZyxelEe3301-00 Version-
ZyxelDx5401-b1 Firmware Version < 5.17\(abyo.7.1\)c0
   ZyxelDx5401-b1 Version-
ZyxelDx4510-b1 Firmware Version < 5.17\(abyl.10.1\)c0
   ZyxelDx4510-b1 Version-
ZyxelDx4510-b0 Firmware Version < 5.17\(abyl.10.1\)c0
   ZyxelDx4510-b0 Version-
ZyxelDx3301-t0 Firmware Version < 5.50\(abvy.7.1\)c0
   ZyxelDx3301-t0 Version-
ZyxelDx3300-t1 Firmware Version < 5.50\(abvy.7.1\)c0
   ZyxelDx3300-t1 Version-
ZyxelDx3300-t0 Firmware Version < 5.50\(abvy.7.1\)c0
   ZyxelDx3300-t0 Version-
ZyxelNebula Lte3301-plus Firmware Version < 1.18\(acca.6\)v0
   ZyxelNebula Lte3301-plus Version-
ZyxelEe6510-10 Firmware Version < 5.19\(acjq.4.1\)c0
   ZyxelEe6510-10 Version-
ZyxelEmg3525-t50b Firmware Version < 5.50\(abpm.9.7\)c0
   ZyxelEmg3525-t50b Version-
ZyxelEmg5523-t50b Firmware Version < 5.50\(abpm.9.7\)c0
   ZyxelEmg5523-t50b Version-
ZyxelEx2210-t0 Firmware Version < 5.50\(acdi.2.3\)c0
   ZyxelEx2210-t0 Version-
ZyxelEx3300-t0 Firmware Version < 5.50\(abvy.7.1\)c0
   ZyxelEx3300-t0 Version-
ZyxelEx3300-t1 Firmware Version < 5.50\(abvy.7.1\)c0
   ZyxelEx3300-t1 Version-
ZyxelEx3301-t0 Firmware Version < 5.50\(abvy.7.1\)c0
   ZyxelEx3301-t0 Version-
ZyxelEx3500-t0 Firmware Version < 5.44\(achr.5.1\)c0
   ZyxelEx3500-t0 Version-
ZyxelEx3501-t0 Firmware Version < 5.44\(achr.5.1\)c0
   ZyxelEx3501-t0 Version-
ZyxelEx3510-b0 Firmware Version < 5.17\(abup.15.2\)c0
   ZyxelEx3510-b0 Version-
ZyxelEx3510-b1 Firmware Version < 5.17\(abup.15.2\)c0
   ZyxelEx3510-b1 Version-
ZyxelEx3600-t0 Firmware Version < 5.70\(acif.2.1\)c0
   ZyxelEx3600-t0 Version-
ZyxelEx5401-b1 Firmware Version < 5.17\(abyo.7.1\)c0
   ZyxelEx5401-b1 Version-
ZyxelEx5510-b0 Firmware Version < 5.17\(abqx.11.1\)c0
   ZyxelEx5510-b0 Version-
ZyxelEx5512-t0 Firmware Version < 5.70\(aceg.5.3\)c0
   ZyxelEx5512-t0 Version-
ZyxelEx5601-t0 Firmware Version < 5.70\(acdz.5.1\)c0
   ZyxelEx5601-t0 Version-
ZyxelEx5601-t1 Firmware Version < 5.70\(acdz.5.1\)c0
   ZyxelEx5601-t1 Version-
ZyxelEx7501-b0 Firmware Version < 5.18\(achn.3.1\)c0
   ZyxelEx7501-b0 Version-
ZyxelEx7710-b0 Firmware Version < 5.18\(acak.1.6\)c0
   ZyxelEx7710-b0 Version-
ZyxelGm4100-b0 Firmware Version < 5.18\(accl.2\)c0
   ZyxelGm4100-b0 Version-
ZyxelPm7500-00 Firmware Version < 5.61\(ackk.1.2\)c0
   ZyxelPm7500-00 Version-
ZyxelVmg3625-t50b Firmware Version < 5.50\(abpm.9.7\)c0
   ZyxelVmg3625-t50b Version-
ZyxelVmg4005-b50a Firmware Version < 5.17\(abqa.3.2\)c0
   ZyxelVmg4005-b50a Version-
ZyxelVmg4005-b60a Firmware Version < 5.17\(abqa.3.2\)c0
   ZyxelVmg4005-b60a Version-
ZyxelAx7501-b1 Firmware Version < 5.17\(abpc.7.1\)c0
   ZyxelAx7501-b1 Version-
ZyxelPe3301-00 Firmware Version < 5.63\(acmt.2.1\)c0
   ZyxelPe3301-00 Version-
ZyxelPe5301-01 Firmware Version < 5.63\(acoj.2.1\)c0
   ZyxelPe5301-01 Version-
ZyxelPm3100-t0 Firmware Version < 5.42\(acbf.4.1\)c0
   ZyxelPm3100-t0 Version-
ZyxelPm5100-t0 Firmware Version < 5.42\(acbf.4.1\)c0
   ZyxelPm5100-t0 Version-
ZyxelPm5100-t1 Firmware Version < 5.42\(acbf.4.1\)c0
   ZyxelPm5100-t1 Version-
ZyxelPm7300-t0 Firmware Version < 5.42\(abyy.4.1\)c0
   ZyxelPm7300-t0 Version-
ZyxelPx3321-t1 Firmware Version < 5.44\(achk.3\)c0
   ZyxelPx3321-t1 Version-
ZyxelPx3321-t1 Firmware Version < 5.44\(acjb.1.5\)c0
   ZyxelPx3321-t1 Version-
ZyxelPx5301-t0 Firmware Version < 5.44\(ackb.0.6\)c0
   ZyxelPx5301-t0 Version-
ZyxelScr 50axe Firmware Version < 1.30\(acgn.0\)c0
   ZyxelScr 50axe Version-
ZyxelVmg8623-t50b Firmware Version < 5.50\(abpm.9.7\)c0
   ZyxelVmg8623-t50b Version-
ZyxelWe3300-00 Firmware Version < 5.70\(acka.1.1\)c0
   ZyxelWe3300-00 Version-
ZyxelWx3100-t0 Firmware Version < 5.50\(abvl.4.9\)c0
   ZyxelWx3100-t0 Version-
ZyxelWx3401-b1 Firmware Version < 5.17\(abve.2.10\)c0
   ZyxelWx3401-b1 Version-
ZyxelWx5600-t0 Firmware Version < 5.70\(aceb.5.1\)c0
   ZyxelWx5600-t0 Version-
ZyxelWx5610-b0 Firmware Version < 5.18\(acgj.0.5\)c0
   ZyxelWx5610-b0 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.14% 0.334
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.9 1.2 3.6
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
security@zyxel.com.tw 4.9 1.2 3.6
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.