Uncontrolled Resource Consumption Vulnerability in Zyxel DX3301-T0 Firmware
CVE-2025-6599

5.3MEDIUM

Key Information:

Vendor: Zyxel
Status: Dx3301-t0 Firmware
Vendor: CVE Published:; 18 November 2025

What is CVE-2025-6599?

An uncontrolled resource consumption vulnerability found in the web server of Zyxel DX3301-T0 firmware versions 5.50(ABVY.6.3)C0 and earlier allows attackers to execute Slowloris-style denial-of-service (DoS) attacks. These attacks can disrupt legitimate HTTP requests and impair access to the web management interface temporarily, while maintaining the functionality of other networking services.

Affected Version(s)

DX3301-T0 firmware <= 5.50(ABVY.6.3)C0

References

https://www.zyxel.com/global/en/support/security-advisori...

vendor-advisory

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 18, 2025
Vulnerability Reserved
Jun 25, 2025

JSON