Buffer Overflow Vulnerability Could Lead to Denial of Service Conditions
CVE-2024-0816

5.5MEDIUM

Key Information:

Vendor: Zyxel
Status: Dx3300-t1 Firmware
Vendor: CVE Published:; 21 May 2024

Summary

A buffer overflow vulnerability exists in the DX3300-T1 firmware version V5.50(ABVY.4)C0. This flaw allows authenticated local users to manipulate the device by executing CLI commands using specially crafted strings. Exploitation of this vulnerability can lead to denial of service (DoS) conditions, affecting the stability and availability of the device. It is critical for users to apply the necessary firmware updates to mitigate any potential risks associated with this vulnerability.

Affected Version(s)

DX3300-T1 firmware V5.50(ABVY.4)C0

References

https://www.zyxel.com/global/en/support/security-advisori...

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 21, 2024
Vulnerability Reserved
Jan 23, 2024