Buffer Overflow Vulnerability in Zyxel NBG-418N v2 Router
CVE-2023-22922

7.5HIGH

Key Information:

Vendor: Zyxel
Status: Nbg-418n V2 Firmware
Vendor: CVE Published:; 1 May 2023

What is CVE-2023-22922?

The Zyxel NBG-418N v2 is susceptible to a buffer overflow vulnerability affecting firmware versions prior to V1.00(AARP.14)C0. When telnet is enabled, an unauthenticated remote attacker can send specially crafted packets to the device, potentially leading to denial of service (DoS) conditions. This risk emphasizes the importance of keeping firmware updated and disabling unnecessary services like telnet to mitigate exposure.

Affected Version(s)

NBG-418N v2 firmware < V1.00(AARP.14)C0

References

https://www.zyxel.com/global/en/support/security-advisori...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 1, 2023
Vulnerability Reserved
Jan 10, 2023