Zyxel

Dx5401-b0 Firmware

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-5412

  • EPSS 0.8%
  • Veröffentlicht 03.09.2024 02:15:05
  • Zuletzt bearbeitet 06.09.2024 18:07:43

A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50(ABOM.8)C0 could allow an unauthenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable...

5.5

CVE-2024-0816

  • EPSS 0.09%
  • Veröffentlicht 21.05.2024 02:15:08
  • Zuletzt bearbeitet 22.01.2025 22:58:56

The buffer overflow vulnerability in the DX3300-T1 firmware version V5.50(ABVY.4)C0 could allow an authenticated local attacker to cause denial of service (DoS) conditions by executing the CLI command with crafted strings on an affected device.

6.5

CVE-2023-37929

  • EPSS 1.46%
  • Veröffentlicht 21.05.2024 02:15:08
  • Zuletzt bearbeitet 22.01.2025 22:55:02

The buffer overflow vulnerability in the CGI program of the VMG3625-T50B firmware version V5.50(ABPM.8)C0 could allow an authenticated remote attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable devic...

7.5

CVE-2023-28770

  • EPSS 83.69%
  • Veröffentlicht 27.04.2023 09:15:09
  • Zuletzt bearbeitet 31.01.2025 19:15:13

The sensitive information exposure vulnerability in the CGI “Export_Log” and the binary “zcmd” in Zyxel DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0 could allow a remote unauthenticated attacker to read the system files and to retrieve the pa...

9.8

CVE-2023-28769

  • EPSS 70.32%
  • Veröffentlicht 27.04.2023 09:15:09
  • Zuletzt bearbeitet 21.11.2024 07:55:58

The buffer overflow vulnerability in the library “libclinkc.so” of the web server “zhttpd” in Zyxel DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0 could allow a remote unauthenticated attacker to execute some OS commands or to cause denial-of-s...

6.5

CVE-2022-43392

  • EPSS 0.56%
  • Veröffentlicht 11.01.2023 02:15:11
  • Zuletzt bearbeitet 21.11.2024 07:26:23

A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted authorization request.

6.5

CVE-2022-43391

  • EPSS 1.42%
  • Veröffentlicht 11.01.2023 02:15:11
  • Zuletzt bearbeitet 21.11.2024 07:26:23

A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted HTTP request.

8.8

CVE-2022-43390

  • EPSS 2.5%
  • Veröffentlicht 11.01.2023 02:15:11
  • Zuletzt bearbeitet 21.11.2024 07:26:23

A command injection vulnerability in the CGI program of Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to execute some OS commands on a vulnerable device by sending a crafted HTTP request.

5.5

CVE-2022-26414

  • EPSS 0.04%
  • Veröffentlicht 11.04.2022 13:15:07
  • Zuletzt bearbeitet 21.11.2024 06:53:54

A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.

8

CVE-2022-26413

  • EPSS 0.63%
  • Veröffentlicht 11.04.2022 13:15:07
  • Zuletzt bearbeitet 21.11.2024 06:53:54

A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface.