Buffer overflow

2023-07-1718:15:00

PRIOn knowledge base

www.prio-n.com

zyxel

buffer overflow

atp series

usg flex series

usg flex 50(w) series

usg20(w)-vpn series

vpn series

nxc2500

nxc5500

firmware

denial of service

lan-based attacker

capwap daemon

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.9%

JSON

A buffer overflow vulnerability in the Zyxel ATP series firmware versions 4.32 through 5.36 Patch 2, USG FLEX series firmware versions 4.50 through 5.36 Patch 2, USG FLEX 50(W) series firmware versions 4.16 through 5.36 Patch 2, USG20(W)-VPN series firmware versions 4.16 through 5.36 Patch 2, VPN series firmware versions 4.30 through 5.36 Patch 2, NXC2500 firmware versions 6.10(AAIG.0) through 6.10(AAIG.3), and NXC5500 firmware versions 6.10(AAOS.0) through 6.10(AAOS.4), could allow an unauthenticated, LAN-based attacker to cause denial of service (DoS) conditions by sending a crafted request to the CAPWAP daemon.

CPENameOperatorVersion
nxc2500_firmwareeq>= 6.10aaig.0 AND <= 6.10aaig.3
nxc5500_firmwareeq>= 6.10aaos.0 AND <= 6.10aaos.4
usg_20w-vpn_firmwarege4.16
usg_20w-vpn_firmwarelt5.37
usg_2200-vpn_firmwarege4.30
usg_2200-vpn_firmwarelt5.37
usg_flex_100_firmwarege4.50
usg_flex_100_firmwarelt5.37
usg_flex_100w_firmwarege4.50
usg_flex_100w_firmwarelt5.37

Name	Operator	Version
nxc2500_firmware	eq	>= 6.10aaig.0 AND <= 6.10aaig.3
nxc5500_firmware	eq	>= 6.10aaos.0 AND <= 6.10aaos.4
usg_20w-vpn_firmware	ge	4.16
usg_20w-vpn_firmware	lt	5.37
usg_2200-vpn_firmware	ge	4.30
usg_2200-vpn_firmware	lt	5.37
usg_flex_100_firmware	ge	4.50
usg_flex_100_firmware	lt	5.37
usg_flex_100w_firmware	ge	4.50
usg_flex_100w_firmware	lt	5.37