cbcvebase.
CVE-2022-43392
published 2023-01-11

CVE-2022-43392: A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker…

medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted authorization request.

Affected

12 ranges
VendorProductVersion rangeFixed in
zyxelex3510-b0_firmware< 5.17\(abup.7\)c05.17\(abup.7\)c0
zyxelex5510-b0_firmware< 5.17\(abqx.7\)c05.17\(abqx.7\)c0
zyxellte7480-m804_firmware< 1.00\(abra.6\)c01.00\(abra.6\)c0
zyxellte7490-m904_firmware< 1.00\(abqy.5\)c01.00\(abqy.5\)c0
zyxelnebula_lte3301-plus_firmware< 1.15\(acca.3\)c01.15\(acca.3\)c0
zyxelnebula_lte7461-m602_firmware< 1.15\(acev.3\)c01.15\(acev.3\)c0
zyxelnebula_nr5101_firmware< 1.15\(accg.3\)c01.15\(accg.3\)c0
zyxelnebula_nr7101_firmware< 1.15\(accc.3\)c01.15\(accc.3\)c0
zyxelnr5101_firmware< 1.00\(abvc.6\)c01.00\(abvc.6\)c0
zyxelnr7101_firmware< V1.15(ACCC.3)C0V1.15(ACCC.3)C0
zyxelnr7101_firmware< 1.00\(abuv.7\)c01.00\(abuv.7\)c0
zyxelnr7102_firmware< 1.00\(abyd.2\)c01.00\(abyd.2\)c0