CVE-2023-33010 Information

May 25, 2023 cve

Description

A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 through 5.36 Patch 1 USG FLEX series firmware versions 4.50 through 5.36 Patch 1 USG FLEX 50(W) firmware versions 4.25 through 5.36 Patch 1 USG20(W)-VPN firmware versions 4.25 through 5.36 Patch 1 VPN series firmware versions 4.30 through 5.36 Patch 1 ZyWALL/USG series firmware versions 4.25 through 4.73 Patch 1 could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and even a remote code execution on an affected device.

Reference

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-buffer-overflow-vulnerabilities-of-firewalls

Share on: