Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2023-6399

🗓️ 20 Feb 2024 02:15:49Reported by [email protected]Type 
nvd
 nvd🔗 web.nvd.nist.gov👁 12 Views

A format string vulnerability in Zyxel ATP, USG FLEX, and USG FLEX 50(W) series firmware versions allows authenticated IPSec VPN user to cause DoS conditions by sending a crafted hostname

Related
Detection
Refs
NVD
Node
zyxelatp100_firmwareRange5.105.37
OR
zyxelatp100_firmwareMatch5.37-
OR
zyxelatp100_firmwareMatch5.37patch1
AND
zyxelatp100Match-
Node
zyxelatp100w_firmwareRange5.105.37
OR
zyxelatp100w_firmwareMatch5.37-
OR
zyxelatp100w_firmwareMatch5.37patch1
AND
zyxelatp100wMatch-
Node
zyxelatp200_firmwareRange5.105.37
OR
zyxelatp200_firmwareMatch5.37-
OR
zyxelatp200_firmwareMatch5.37patch1
AND
zyxelatp200Match-
Node
zyxelatp500_firmwareRange5.105.37
OR
zyxelatp500_firmwareMatch5.37-
OR
zyxelatp500_firmwareMatch5.37patch1
AND
zyxelatp500Match-
Node
zyxelatp700_firmwareRange5.105.37
OR
zyxelatp700_firmwareMatch5.37-
OR
zyxelatp700_firmwareMatch5.37patch1
AND
zyxelatp700Match-
Node
zyxelatp800_firmwareRange5.105.37
OR
zyxelatp800_firmwareMatch5.37-
OR
zyxelatp800_firmwareMatch5.37patch1
AND
zyxelatp800Match-
Node
zyxelusg_flex_100_firmwareRange5.105.37
OR
zyxelusg_flex_100_firmwareMatch5.37-
OR
zyxelusg_flex_100_firmwareMatch5.37patch1
AND
zyxelusg_flex_100Match-
Node
zyxelusg_flex_100ax_firmwareRange5.105.37
OR
zyxelusg_flex_100ax_firmwareMatch5.37-
OR
zyxelusg_flex_100ax_firmwareMatch5.37patch1
AND
zyxelusg_flex_100axMatch-
Node
zyxelusg_flex_100h_firmwareRange5.105.37
OR
zyxelusg_flex_100h_firmwareMatch5.37-
OR
zyxelusg_flex_100h_firmwareMatch5.37patch1
AND
zyxelusg_flex_100hMatch-
Node
zyxelusg_flex_100w_firmwareRange5.105.37
OR
zyxelusg_flex_100w_firmwareMatch5.37-
OR
zyxelusg_flex_100w_firmwareMatch5.37patch1
AND
zyxelusg_flex_100wMatch-
Node
zyxelusg_flex_200_firmwareRange5.105.37
OR
zyxelusg_flex_200_firmwareMatch5.37-
OR
zyxelusg_flex_200_firmwareMatch5.37patch1
AND
zyxelusg_flex_200Match-
Node
zyxelusg_flex_200h_firmwareRange5.105.37
OR
zyxelusg_flex_200h_firmwareMatch5.37-
OR
zyxelusg_flex_200h_firmwareMatch5.37patch1
AND
zyxelusg_flex_200hMatch-
Node
zyxelusg_flex_200hp_firmwareRange5.105.37
OR
zyxelusg_flex_200hp_firmwareMatch5.37-
OR
zyxelusg_flex_200hp_firmwareMatch5.37patch1
AND
zyxelusg_flex_200hpMatch-
Node
zyxelusg_flex_500_firmwareRange5.105.37
OR
zyxelusg_flex_500_firmwareMatch5.37-
OR
zyxelusg_flex_500_firmwareMatch5.37patch1
AND
zyxelusg_flex_500Match-
Node
zyxelusg_flex_500h_firmwareRange5.105.37
OR
zyxelusg_flex_500h_firmwareMatch5.37-
OR
zyxelusg_flex_500h_firmwareMatch5.37patch1
AND
zyxelusg_flex_500hMatch-
Node
zyxelusg_flex_700_firmwareRange5.105.37
OR
zyxelusg_flex_700_firmwareMatch5.37-
OR
zyxelusg_flex_700_firmwareMatch5.37patch1
AND
zyxelusg_flex_700Match-
Node
zyxelusg_flex_700h_firmwareRange5.105.37
OR
zyxelusg_flex_700h_firmwareMatch5.37-
OR
zyxelusg_flex_700h_firmwareMatch5.37patch1
AND
zyxelusg_flex_700hMatch-
Node
zyxelusg_flex_50_firmwareRange5.105.37
OR
zyxelusg_flex_50_firmwareMatch5.37-
OR
zyxelusg_flex_50_firmwareMatch5.37patch1
AND
zyxelusg_flex_50Match-
Node
zyxelusg_flex_50w_firmwareRange5.105.37
OR
zyxelusg_flex_50w_firmwareMatch5.37-
OR
zyxelusg_flex_50w_firmwareMatch5.37patch1
AND
zyxelusg_flex_50wMatch-
Node
zyxelusg20-vpn_firmwareRange5.105.37
OR
zyxelusg20-vpn_firmwareMatch5.37-
OR
zyxelusg20-vpn_firmwareMatch5.37patch1
AND
zyxelusg20-vpnMatch-
Node
zyxelusg20w-vpn_firmwareRange5.105.37
OR
zyxelusg20w-vpn_firmwareMatch5.37-
OR
zyxelusg20w-vpn_firmwareMatch5.37patch1
AND
zyxelusg20w-vpnMatch-
Node
zyxeluosMatch1.10-
OR
zyxeluosMatch1.10patch1
AND
zyxelusg_flex_100hMatch-
OR
zyxelusg_flex_100hpMatch-
OR
zyxelusg_flex_200hMatch-
OR
zyxelusg_flex_200hpMatch-
OR
zyxelusg_flex_500hMatch-
OR
zyxelusg_flex_700hMatch-

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Jan 2025 18:36Current
5.4Medium risk
Vulners AI Score5.4
CVSS 3.15.7 - 6.5
EPSS0.00306
CWE-134
zyxel atpusg flexformat string vulnerabilitydosipsec vpn
12