1. Home
  2. CVE Database
  3. CVE-2022-26414
MEDIUM · 6.0

CVE-2022-26414

A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to...

Vulnerability Description

A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to cause a denial of service.

CVSS Score

6.0

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
ZyxelVmg3312-T20A Firmware5.30\(abfx.5\)c0
ZyxelVmg3312-T20A-
ZyxelEmg3525-T50B Firmware< 5.50\(abpm.6\)c0
ZyxelEmg3525-T50B-
ZyxelEmg5523-T50B Firmware< 5.50\(abpm.6\)c0
ZyxelEmg5523-T50B-
ZyxelEmg5723-T50K Firmware< 5.50\(abom.7\)c0
ZyxelEmg5723-T50K-
ZyxelEmg6726-B10A Firmware< 5.13\(abnp.7\)c0
ZyxelEmg6726-B10A-
ZyxelVmg1312-T20B Firmware< 5.50\(absb.5\)c0
ZyxelVmg1312-T20B-
ZyxelVmg3625-T50B Firmware< 5.50\(abpm.6\)c0
ZyxelVmg3625-T50B-
ZyxelVmg3927-B50A Firmware< 5.17\(abmt.6\)c0
ZyxelVmg3927-B50A-
ZyxelVmg3927-B50B Firmware< 5.13\(ably.7\)c0
ZyxelVmg3927-B50B-
ZyxelVmg3927-B60A Firmware< 5.17\(abmt.6\)c0
ZyxelVmg3927-B60A-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2022-26414?

CVE-2022-26414 is a vulnerability with a CVSS score of 6.0 (MEDIUM). A potential buffer overflow vulnerability was identified in some internal functions of Zyxel VMG3312-T20A firmware version 5.30(ABFX.5)C0, which could be exploited by a local authenticated attacker to...

How severe is CVE-2022-26414?

CVE-2022-26414 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-26414?

Check the references section above for vendor advisories and patch information. Affected products include: Zyxel Vmg3312-T20A Firmware, Zyxel Vmg3312-T20A, Zyxel Emg3525-T50B Firmware, Zyxel Emg3525-T50B, Zyxel Emg5523-T50B Firmware.