Published: 11/04/2022 Updated: 15/04/2022

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 436

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated malicious user to cause a denial of service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
zyxel vmg3312-t20a_firmware 5.30\\(abfx.5\\)c0
zyxel emg3525-t50b_firmware
zyxel emg5523-t50b_firmware
zyxel emg5723-t50k_firmware
zyxel emg6726-b10a_firmware
zyxel vmg1312-t20b_firmware
zyxel vmg3625-t50b_firmware
zyxel vmg3927-b50a_firmware
zyxel vmg3927-b50b_firmware
zyxel vmg3927-b60a_firmware
zyxel vmg3927-t50k_firmware
zyxel vmg4927-b50a_firmware
zyxel vmg8623-t50b_firmware
zyxel vmg8825-b50a_firmware
zyxel vmg8825-b50b_firmware
zyxel vmg8825-t50k_firmware
zyxel vmg8825-b60a_firmware
zyxel vmg8825-b60b_firmware
zyxel xmg3927-b50a_firmware
zyxel xmg8825-b50a_firmware
zyxel dx5401-b0_firmware
zyxel ex3510-b0_firmware
zyxel ex5401-b0_firmware
zyxel ex5501-b0_firmware
zyxel ax7501-b0_firmware
zyxel ep240p_firmware
zyxel pm7300-t0_firmware
zyxel pmg5317-t20b_firmware
zyxel pmg5617ga_firmware
zyxel pmg5617-t20b2_firmware
zyxel pmg5622ga_firmware
zyxel px7501-b0_firmware

CWE-120 https://www.zyxel.com/support/OS-command-injection-and-buffer-overflow-vulnerabilities-of-CPE-and-ONTs.shtml https://nvd.nist.gov

CVE-2022-26414

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect