Zyxel

Emg5723-t50k Firmware

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2024-38268

  • EPSS 0.18%
  • Veröffentlicht 24.09.2024 02:15:02
  • Zuletzt bearbeitet 30.09.2024 15:52:29

An improper restriction of operations within the bounds of a memory buffer in the MAC address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause poten...

4.9

CVE-2024-38266

  • EPSS 0.18%
  • Veröffentlicht 24.09.2024 02:15:02
  • Zuletzt bearbeitet 22.01.2025 22:27:33

An improper restriction of operations within the bounds of a memory buffer in the parameter type parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause po...

7.5

CVE-2024-5412

  • EPSS 0.8%
  • Veröffentlicht 03.09.2024 02:15:05
  • Zuletzt bearbeitet 06.09.2024 18:07:43

A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50(ABOM.8)C0 could allow an unauthenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable...

5.5

CVE-2024-0816

  • EPSS 0.09%
  • Veröffentlicht 21.05.2024 02:15:08
  • Zuletzt bearbeitet 22.01.2025 22:58:56

The buffer overflow vulnerability in the DX3300-T1 firmware version V5.50(ABVY.4)C0 could allow an authenticated local attacker to cause denial of service (DoS) conditions by executing the CLI command with crafted strings on an affected device.

6.5

CVE-2023-37929

  • EPSS 1.46%
  • Veröffentlicht 21.05.2024 02:15:08
  • Zuletzt bearbeitet 22.01.2025 22:55:02

The buffer overflow vulnerability in the CGI program of the VMG3625-T50B firmware version V5.50(ABPM.8)C0 could allow an authenticated remote attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable devic...

6.5

CVE-2022-43392

  • EPSS 0.56%
  • Veröffentlicht 11.01.2023 02:15:11
  • Zuletzt bearbeitet 21.11.2024 07:26:23

A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted authorization request.

6.5

CVE-2022-43391

  • EPSS 1.42%
  • Veröffentlicht 11.01.2023 02:15:11
  • Zuletzt bearbeitet 21.11.2024 07:26:23

A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted HTTP request.

8.8

CVE-2022-43390

  • EPSS 2.5%
  • Veröffentlicht 11.01.2023 02:15:11
  • Zuletzt bearbeitet 21.11.2024 07:26:23

A command injection vulnerability in the CGI program of Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to execute some OS commands on a vulnerable device by sending a crafted HTTP request.

5.5

CVE-2022-26414

  • EPSS 0.04%
  • Veröffentlicht 11.04.2022 13:15:07
  • Zuletzt bearbeitet 21.11.2024 06:53:54

A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.

8

CVE-2022-26413

  • EPSS 0.63%
  • Veröffentlicht 11.04.2022 13:15:07
  • Zuletzt bearbeitet 21.11.2024 06:53:54

A command injection vulnerability in the CGI program of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0 could allow a local authenticated attacker to execute arbitrary OS commands on a vulnerable device via a LAN interface.