Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2023-33010

Published: 24/05/2023 Updated: 07/06/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Zyxel

Vulnerability Summary

A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 up to and including 5.36 Patch 1, USG FLEX series firmware versions 4.50 up to and including 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 up to and including 5.36 Patch 1, USG20(W)-VPN firmware versions 4.25 up to and including 5.36 Patch 1, VPN series firmware versions 4.30 up to and including 5.36 Patch 1, ZyWALL/USG series firmware versions 4.25 up to and including 4.73 Patch 1, could allow an unauthenticated malicious user to cause denial-of-service (DoS) conditions and even a remote code execution on an affected device.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

zyxel atp100_firmware

zyxel atp100_firmware 5.36

zyxel atp200_firmware

zyxel atp200_firmware 5.36

zyxel atp500_firmware

zyxel atp500_firmware 5.36

zyxel atp100w_firmware

zyxel atp100w_firmware 5.36

zyxel atp700_firmware

zyxel atp700_firmware 5.36

zyxel atp800_firmware

zyxel atp800_firmware 5.36

zyxel usg_flex_100_firmware

zyxel usg_flex_100_firmware 5.36

zyxel usg_flex_50_firmware 5.36

zyxel usg_flex_200_firmware

zyxel usg_flex_200_firmware 5.36

zyxel usg_flex_500_firmware

zyxel usg_flex_500_firmware 5.36

zyxel usg_flex_700_firmware

zyxel usg_flex_700_firmware 5.36

zyxel usg_flex_100w_firmware 5.36

zyxel usg_flex_50w_firmware

zyxel usg_flex_50w_firmware 5.36

zyxel usg_20w-vpn_firmware 5.36

zyxel vpn100_firmware

zyxel vpn100_firmware 5.36

zyxel vpn50_firmware

zyxel vpn50_firmware 5.36

zyxel vpn300_firmware

zyxel vpn300_firmware 5.36

zyxel vpn1000_firmware

zyxel vpn1000_firmware 5.36

zyxel usg20-vpn_firmware

zyxel usg20-vpn_firmware 5.36

zyxel usg_40_firmware

zyxel usg_40_firmware 4.73

zyxel usg_40w_firmware

zyxel usg_40w_firmware 4.73

zyxel usg_60w_firmware

zyxel usg_60w_firmware 4.73

zyxel usg_60_firmware

zyxel usg_60_firmware 4.73

References

CWE-120https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-buffer-overflow-vulnerabilities-of-firewallshttps://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook