1. Home
  2. CVE Database
  3. CVE-2023-37929
MEDIUM · 6.5

CVE-2023-37929

The buffer overflow vulnerability in the CGI program of the VMG3625-T50B firmware version V5.50(ABPM.8)C0 could allow an authenticated remote attacker to cause denial of service (DoS) conditions by se...

Vulnerability Description

The buffer overflow vulnerability in the CGI program of the VMG3625-T50B firmware version V5.50(ABPM.8)C0 could allow an authenticated remote attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
ZyxelDx3300-T1 Firmware5.50\(aby.4\)c0
ZyxelDx3300-T1-
ZyxelDx3301-T0 Firmware5.50\(aby.4\)c0
ZyxelDx3301-T0-
ZyxelDx4510 Firmware5.17\(abyl.5\)c0
ZyxelDx4510-
ZyxelDx5401-B0 Firmware5.17\(abyo.5\)c0
ZyxelDx5401-B0-
ZyxelDx5401-B1 Firmware5.17\(abyo.5\)c0
ZyxelDx5401-B1-
ZyxelEmg3525-T50B Firmware5.50\(abpm.8\)c0
ZyxelEmg3525-T50B-
ZyxelEmg5523-T50B Firmware5.50\(abpm.8\)c0
ZyxelEmg5523-T50B-
ZyxelEmg5723-T50K Firmware5.50\(abom.8.2\)c0
ZyxelEmg5723-T50K-
ZyxelEx3300-T1 Firmware5.50\(aby.4\)c0
ZyxelEx3300-T1-
ZyxelEx3301-T0 Firmware5.50\(aby.4\)c0
ZyxelEx3301-T0-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2023-37929?

CVE-2023-37929 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The buffer overflow vulnerability in the CGI program of the VMG3625-T50B firmware version V5.50(ABPM.8)C0 could allow an authenticated remote attacker to cause denial of service (DoS) conditions by se...

How severe is CVE-2023-37929?

CVE-2023-37929 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-37929?

Check the references section above for vendor advisories and patch information. Affected products include: Zyxel Dx3300-T1 Firmware, Zyxel Dx3300-T1, Zyxel Dx3301-T0 Firmware, Zyxel Dx3301-T0, Zyxel Dx4510 Firmware.