CVE-2023-27989
published 2023-06-05CVE-2023-27989: A buffer overflow vulnerability in the CGI program of the Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 could allow a remote authenticated attacker…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
A buffer overflow vulnerability in the CGI program of the Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 could allow a remote authenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| zyxel | lte7480-m804_firmware | <= 1.00\(abra.6\)c0 | — |
| zyxel | lte7490-m904_firmware | <= 1.00\(abqy.5\)c0 | — |
| zyxel | nebula_nr7101_firmware | <= 1.15\(accc.3\)c0 | — |
| zyxel | nr7101_firmware | < V1.00(ABUV.8)C0 | V1.00(ABUV.8)C0 |
| zyxel | nr7101_firmware | <= 1.00\(abuv.7\)c0 | — |