cve-2024-38268
Vulnerability from cvelistv5
Published
2024-09-24 01:35
Modified
2024-09-24 15:37
Severity ?
4.9 (Medium) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Summary
An improper restriction of operations within the bounds of a memory buffer in the MAC address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause potential memory corruptions, resulting in a thread crash on an affected device.
References
security@zyxel.com.twhttps://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-post-authentication-memory-corruption-vulnerabilities-in-some-dsl-ethernet-cpe-fiber-ont-wifi-extender-and-security-router-versions-09-24-2024Vendor Advisory
Impacted products
Vendor Product Version
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-38268",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T15:37:47.983578Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T15:37:58.810Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "VMG8825-T50K firmware",
          "vendor": "Zyxel",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c= 5.50(ABOM.8)C0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "An improper restriction of operations within the bounds of a memory buffer in the MAC address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause potential memory corruptions, resulting in a thread crash on an affected device."
            }
          ],
          "value": "An improper restriction of operations within the bounds of a memory buffer in the MAC address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause potential memory corruptions, resulting in a thread crash on an affected device."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-119",
              "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-09-24T01:35:22.675Z",
        "orgId": "96e50032-ad0d-4058-a115-4d2c13821f9f",
        "shortName": "Zyxel"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-post-authentication-memory-corruption-vulnerabilities-in-some-dsl-ethernet-cpe-fiber-ont-wifi-extender-and-security-router-versions-09-24-2024"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "96e50032-ad0d-4058-a115-4d2c13821f9f",
    "assignerShortName": "Zyxel",
    "cveId": "CVE-2024-38268",
    "datePublished": "2024-09-24T01:35:22.675Z",
    "dateReserved": "2024-06-12T09:11:12.898Z",
    "dateUpdated": "2024-09-24T15:37:58.810Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-38268\",\"sourceIdentifier\":\"security@zyxel.com.tw\",\"published\":\"2024-09-24T02:15:02.987\",\"lastModified\":\"2024-09-30T15:52:29.977\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An improper restriction of operations within the bounds of a memory buffer in the MAC address parser of the Zyxel VMG8825-T50K firmware versions through 5.50(ABOM.8)C0 could allow an authenticated attacker with administrator privileges to cause potential memory corruptions, resulting in a thread crash on an affected device.\"},{\"lang\":\"es\",\"value\":\"Una restricci\u00f3n incorrecta de las operaciones dentro de los l\u00edmites de un b\u00fafer de memoria en el analizador de direcciones MAC de las versiones de firmware Zyxel VMG8825-T50K hasta la 5.50(ABOM.8)C0 podr\u00eda permitir que un atacante autenticado con privilegios de administrador provoque posibles corrupciones de memoria, lo que resultar\u00eda en un bloqueo del hilo en un dispositivo afectado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@zyxel.com.tw\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":4.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.2,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security@zyxel.com.tw\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:wx5600-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.70\\\\(aceb.3.2\\\\)c0\",\"matchCriteriaId\":\"43D29BE5-A0A9-4EA3-A0BB-AF3FCB83B9E5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:wx5600-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"303DB62A-2A7E-4CB7-ADA0-29C23BFD41BE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:wx3401-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abve.2.5\\\\)c0\",\"matchCriteriaId\":\"FEEFBA62-FF41-47F3-81F5-61034302A0E9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:wx3401-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"677C554B-F9C7-4780-97C0-6021146F8B3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:wx3100-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvl.4.3\\\\)c0\",\"matchCriteriaId\":\"1C9392FD-1E26-4C72-94BA-7F71BCB7FD32\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:wx3100-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C2C56248-D12F-46DC-A52F-0607E4A5DCCC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:scr50axe_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.10\\\\(acgn.3\\\\)c0\",\"matchCriteriaId\":\"093F98C0-F84F-408C-9835-D63F238E81E9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:scr50axe:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDE16790-D3CB-48D2-9C4C-ACCED14035BD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:px3321-t1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.44\\\\(acjb.1\\\\)c0\",\"matchCriteriaId\":\"EC1054FD-2E83-457C-9B5C-936813454B0E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:px3321-t1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BB525DE-2E08-4848-976E-7DF6C7E19578\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:pm7300-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.42\\\\(abyy.2.2\\\\)c0\",\"matchCriteriaId\":\"7BD127D7-3B27-4D3B-A82C-B08D8BCFACF0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:pm7300-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AD1E2E3-2BB8-4CB3-AF81-C916312FE361\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:pm5100-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.42\\\\(acbf.2.1\\\\)c0\",\"matchCriteriaId\":\"8AD5D584-14FB-424D-9175-A8F122483748\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:pm5100-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"249AF476-CAA4-4C87-8CC3-E0AF15E61F7E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:pm3100-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.42\\\\(acbf.2.1\\\\)c0\",\"matchCriteriaId\":\"EF26B807-83DE-4D66-AB11-C8FF20D579D8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:pm3100-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F78F88D4-A782-4075-A3CB-A728CE4014DF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ax7501-b1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abpc.5.2\\\\)c0\",\"matchCriteriaId\":\"61AC6D95-80A9-447F-9CB4-6CCA3A86334B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ax7501-b1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"780BBA7D-7E2C-4624-AA15-8A51F3DF428F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:vmg8825-t50k_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abom.8.4\\\\)c0\",\"matchCriteriaId\":\"B2781DE8-ADD6-48EF-8FC5-D2DBAEC44E8D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:vmg8825-t50k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4C2320B-52DF-4F86-86D2-42FB62337773\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:vmg8623-t50b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abpm.9.2\\\\)c0\",\"matchCriteriaId\":\"191B287A-F923-42EE-81F5-A8895F15ABF6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:vmg8623-t50b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3535B63-318C-4EB5-ADC8-0AF3FB443DFC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:vmg4005-b60a_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abqa.2.2\\\\)c0\",\"matchCriteriaId\":\"2C7BE424-6E8A-485E-9F20-CCE34EE6BD17\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:vmg4005-b60a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30C1B91D-3EA0-4A1D-833A-6767A6C84DA3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:vmg4005-b50a_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abqa.2.2\\\\)c0\",\"matchCriteriaId\":\"71020993-535B-420A-A158-1406C8A611A2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:vmg4005-b50a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88F74228-AC0C-4150-974D-54D77BBF9A90\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:vmg3927-t50k_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abom.8.4\\\\)c0\",\"matchCriteriaId\":\"4555EDDD-B50A-41F1-B603-D384DE0CC42A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:vmg3927-t50k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B33AE56-3948-494B-9E23-54D939DF0D3E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:vmg3625-t50b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abpm.9.2\\\\)c0\",\"matchCriteriaId\":\"A5EB06CB-BCFB-4EBF-A1C6-0A72DD9C56D8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:vmg3625-t50b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB5E8468-D12F-4CBE-AC7E-27D5A928A85A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:emg5723-t50k_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abom.8.4\\\\)c0\",\"matchCriteriaId\":\"3530C6BA-5001-4BE2-B5EF-1A2638B234FF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:emg5723-t50k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B18982B2-E575-478E-A2B4-0932DE329056\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:emg5523-t50b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abpm.9.2\\\\)c0\",\"matchCriteriaId\":\"357C7DEF-891E-4D2D-9975-785E190B0E28\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:emg5523-t50b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3ECE0EB-C429-4716-ABFB-73540847EB9E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:emg3525-t50b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abpm.9.2\\\\)c0\",\"matchCriteriaId\":\"8657DD28-3CBB-4828-927A-07DFF03E07DC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:emg3525-t50b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9259E2F6-885D-4B44-8D40-20758DA599D2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex7710-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.18\\\\(acak.1\\\\)c1\",\"matchCriteriaId\":\"50F8A5D1-04C5-4187-AD53-A7BAEBB2D5F3\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex7710-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07727D9C-723B-4761-B6B6-07FE1784D3C1\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex7501-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.18\\\\(achn.1.2\\\\)c0\",\"matchCriteriaId\":\"CE07CE74-7E9A-4319-A04B-FAB27DF20A5E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex7501-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1CE049DE-A5DA-4A4F-BA30-BBD09FF34DE0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex5601-t1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.70\\\\(acdz.3.2\\\\)c0\",\"matchCriteriaId\":\"8BBBF350-66DE-4337-8E95-F1C5D75D5151\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex5601-t1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D629D4B6-B2F2-45F1-9295-71751570C231\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex5601-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.70\\\\(acdz.3.2\\\\)c0\",\"matchCriteriaId\":\"5222AE4A-192D-4B52-B12A-7DC04047CDD4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex5601-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABFF2039-5DCC-4850-8BDA-3D418629C226\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex5512-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.70\\\\(aceg.3\\\\)c2\",\"matchCriteriaId\":\"E4CB5021-3A4C-4D2E-BC78-4E027DB217E9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex5512-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F32FA3FB-CE89-4CC1-9D8D-765B90A122DF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex5510-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abqx.10\\\\)c0\",\"matchCriteriaId\":\"37FB6CD6-AA0F-4A4A-9A10-0C0558FFC4FC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex5510-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E82D41CC-2EB3-4892-8383-FB2C9EC64D9E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex5401-b1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abyo.6.2\\\\)c0\",\"matchCriteriaId\":\"A8CA39B3-1819-4EAF-86AD-AFBA7C22C9AE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex5401-b1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7213FA12-5CD6-4E9B-8387-A52AEF17EA10\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex5401-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abyo.6.2\\\\)c0\",\"matchCriteriaId\":\"6938EC2C-CAC9-4A43-8B30-96BD92279087\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex5401-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B1B9D0C-AB6C-43E1-BFCA-50EF231510FC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3600-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.70\\\\(acif.0.3\\\\)c0\",\"matchCriteriaId\":\"0976A6EB-9A37-4316-B204-0E62E8CE832B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3600-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3BCC6A9-1CAE-459D-BE7D-AAB956BD1B92\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3510-b1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abup.12\\\\)c0\",\"matchCriteriaId\":\"DF914A6C-2C47-4869-9368-6ACC97876D5C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3510-b1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F955BD9-4D44-46BE-8605-51C6250A74D9\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3510-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abup.12\\\\)c0\",\"matchCriteriaId\":\"FC4B955B-CDA5-4BBB-8FFD-71394399A6C6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3510-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0455EC5-B783-4CDB-9DC0-D8EF377A5F2C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3501-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.44\\\\(achr.2\\\\)c0\",\"matchCriteriaId\":\"D72F97BC-0C04-436E-82EC-956164D97608\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3501-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A98F76BD-0404-46DD-AE6A-EB630FEC8904\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3500-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.44\\\\(achr.2\\\\)c0\",\"matchCriteriaId\":\"BD151CF9-DC45-475A-9128-91102B7CDF34\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3500-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8714EB1B-38E5-4295-AD26-EE13E2161DEA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3301-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvy.5.3\\\\)c0\",\"matchCriteriaId\":\"6CC5D271-3679-4962-8096-58BC125E553A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3301-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B37B17D8-76CF-4A26-B2DB-41B1BC9FD0A2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3300-t1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvy.5.3\\\\)c0\",\"matchCriteriaId\":\"09AF8A00-ECF7-43EA-98FB-6BDA7C5CAD60\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3300-t1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F766221F-7478-4E39-B4CD-A2498ACEE754\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:ex3300-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvy.5.3\\\\)c0\",\"matchCriteriaId\":\"E60A1553-6685-4C75-91D0-199AC09558C6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:ex3300-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"137F8B94-4176-4D9B-8704-28525E7352D1\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx5401-b1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abyo.6.2\\\\)c0\",\"matchCriteriaId\":\"96DF49B6-9BF6-45FC-BCA5-B612F01AC2E1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx5401-b1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AFE5C53C-4255-4AEE-A49E-36C1A2CF10F5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx5401-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abyo.6.2\\\\)c0\",\"matchCriteriaId\":\"B8AF84D6-113E-49F3-9F3C-7EFE5DFEA8BF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx5401-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B293E564-2C48-442A-A415-34383DF3ADBA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx4510-b1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abyl.7\\\\)c0\",\"matchCriteriaId\":\"46E29474-6891-480C-AC09-A3FB21C0D5DB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx4510-b1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8668990-045A-4DDD-9089-DE0025B69765\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx4510-b0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.17\\\\(abyl.7\\\\)c0\",\"matchCriteriaId\":\"344761C5-3143-4B42-869D-B35DEE2C51FE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx4510-b0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0338E1C-2509-4510-8C8D-4BD5AEA47D81\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx3301-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvy.5.3\\\\)c0\",\"matchCriteriaId\":\"582711B2-B998-4FF8-8237-99B3B62EDC87\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx3301-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BBDC072-5D40-4130-9B5F-22FDA9BF909A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx3300-t1_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvy.5.3\\\\)c0\",\"matchCriteriaId\":\"F811CD1C-E4D8-43A0-8E95-07CE2566FC72\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx3300-t1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2456F691-C182-4BE6-A08F-5E1717366DCA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:zyxel:dx3300-t0_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.50\\\\(abvy.5.3\\\\)c0\",\"matchCriteriaId\":\"6B3EF633-501B-43DB-8297-D9AF9335B6C1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:zyxel:dx3300-t0:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D3E176E-F728-4385-8533-4C694D43898A\"}]}]}],\"references\":[{\"url\":\"https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-post-authentication-memory-corruption-vulnerabilities-in-some-dsl-ethernet-cpe-fiber-ont-wifi-extender-and-security-router-versions-09-24-2024\",\"source\":\"security@zyxel.com.tw\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.