4 matches found
CVE-2023-28769
The buffer overflow vulnerability in the library “libclinkc.so” of the web server “zhttpd” in Zyxel DX5401-B0 firmware versions prior to V5.17ABYO.1C0 could allow a remote unauthenticated attacker to execute some OS commands or to cause denial-of-service DoS conditions on a vulnerable device...
CVE-2023-28769
The CVE-2023-28769 issue affects Zyxel DX5401-B0 firmware pre‑5.17(ABYO.1)C0, where a buffer overflow in the zhttpd library libclinkc.so within the web server could allow a remote unauthenticated attacker to execute OS commands or cause DoS. Affected product: Zyxel DX5401‑B0; vulnerable component...
Zyxel Unauthenticated LAN Remote Code Execution
This module exploits a buffer overflow in the zhttpd binary /bin/zhttpd. It is present on more than 40 Zyxel routers and CPE devices. The code execution vulnerability can only be exploited by an attacker if the zhttp webserver is reachable. No authentication is required. After exploitation, an...
CVE-2023-28769
creationtimestamp| type| source ---|---|--- 2023-03-21 19:23:14+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/misc/zyxelmultipledeviceszhttplanrce.rb 2023-06-22 12:15:21+00:00| seen| MISP/1c355568-696d-46a8-b7e7-3022bb8d3143 2025-02-06...