CNNVD-202511-2138 Information

CNNVD ID

CNNVD-202511-2138

Related CVE

CVE-2025-6599

• CNNVD Published: 2025-11-18

Description (Chinese)

Zyxel DX3301-T0是中国合勤（Zyxel）公司的一个小型无线WiFi路由器。 Zyxel DX3301-T0 5.50(ABVY.6.3)C0及之前版本存在资源管理错误漏洞，该漏洞源于Web服务器资源消耗不受控制，可能导致Slowloris式拒绝服务攻击。

Description (English)

Zyxel DX3301-T0 is a small wireless WiFi router of Zyxel China. Zyxel DX3301-T0 5.50 (ABVY.6.3) C0 and previous versions had a resource management error gap, which stemmed from uncontrolled consumption of resources on the Web server, which could lead to a Slowloris-type denial-of-service attack.

Hazard Level

High

Vulnerability Type

资源管理错误

Affected Vendor

合勤

Published

2025-11-18

Last Modified

2026-02-24

References

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-uncontrolled-resource-consumption-and-command-injection-vulnerabilities-in-certain-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-security-routers-and-wireless-extenders-11-18-2025

Patch

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-uncontrolled-resource-consumption-and-command-injection-vulnerabilities-in-certain-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-security-routers-and-wireless-extenders-11-18-2025