A buffer overflow vulnerability in the “fbwifi_forward.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.30 through 5.35, USG20(W)-VPN firmware versions 4.30 through 5.35, and VPN series firmware versions 4.30 through 5.35, which could allow a remote unauthenticated attacker to cause DoS conditions by sending a crafted HTTP request if the Facebook WiFi function were enabled on an affected device.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
History
04 May 2023, 14:44
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | (CONFIRM) https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-of-firewalls-and-aps - Vendor Advisory | |
First Time |
Zyxel usg Flex 700
Zyxel vpn300 Zyxel vpn1000 Zyxel vpn1000 Firmware Zyxel vpn50 Firmware Zyxel usg Flex 50w Firmware Zyxel usg Flex 200 Firmware Zyxel vpn100 Zyxel vpn50 Zyxel vpn100 Firmware Zyxel usg 20w-vpn Firmware Zyxel Zyxel vpn300 Firmware Zyxel usg Flex 100w Zyxel usg Flex 200 Zyxel usg Flex 50 Zyxel usg 20w-vpn Zyxel usg Flex 50w Zyxel usg Flex 500 Firmware Zyxel usg Flex 50 Firmware Zyxel usg Flex 100w Firmware Zyxel usg Flex 500 Zyxel usg Flex 700 Firmware Zyxel usg Flex 100 Zyxel usg Flex 100 Firmware |
|
CPE | cpe:2.3:h:zyxel:usg_flex_700:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_100:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_100w_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_50w:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn1000_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_20w-vpn:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn50_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_200:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn100_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:vpn300_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_500:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn1000:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn300:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_100_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_100w:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_50_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_20w-vpn_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_700_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_500_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn50:-:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_200_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:zyxel:usg_flex_50w_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:zyxel:vpn100:-:*:*:*:*:*:*:* cpe:2.3:h:zyxel:usg_flex_50:-:*:*:*:*:*:*:* |
|
CWE | CWE-120 |
24 Apr 2023, 17:43
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-24 17:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-22915
Mitre link : CVE-2023-22915
CVE.ORG link : CVE-2023-22915
JSON object : View
Products Affected
zyxel
- usg_flex_500
- usg_flex_100
- usg_flex_50w
- usg_flex_50_firmware
- usg_flex_200_firmware
- usg_flex_100w
- usg_20w-vpn_firmware
- vpn300_firmware
- usg_flex_700_firmware
- vpn50
- vpn100
- vpn300
- vpn1000_firmware
- usg_flex_200
- usg_flex_100_firmware
- usg_flex_100w_firmware
- usg_flex_50w_firmware
- vpn50_firmware
- usg_flex_50
- usg_flex_500_firmware
- vpn100_firmware
- vpn1000
- usg_flex_700
- usg_20w-vpn
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')