Vulnerability Description
A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50(ABOM.8)C0 could allow an unauthenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Zyxel | Nebula Lte3301-Plus Firmware | < 1.18\(acca.4\)c0 |
| Zyxel | Nebula Lte3301-Plus | - |
| Zyxel | Nebula Fwa505 Firmware | < 1.18\(acko.4\)c0 |
| Zyxel | Nebula Fwa505 | - |
| Zyxel | Nebula Fwa710 Firmware | < 1.18\(acgc.4\)c0 |
| Zyxel | Nebula Fwa710 | - |
| Zyxel | Nebula Fwa510 Firmware | < 1.18\(acgd.4\)c0 |
| Zyxel | Nebula Fwa510 | - |
| Zyxel | Wx5600-T0 Firmware | < 5.70\(aceb.3.2\)c0 |
| Zyxel | Wx5600-T0 | - |
| Zyxel | Wx3401-B0 Firmware | < 5.17\(abve.2.5\)c0 |
| Zyxel | Wx3401-B0 | - |
| Zyxel | Wx3100-T0 Firmware | < 5.50\(abvl.4.2\)c0 |
| Zyxel | Wx3100-T0 | - |
| Zyxel | Scr50Axe Firmware | < 1.10\(acgn.3\)c0 |
| Zyxel | Scr 50Axe | - |
| Zyxel | Px3321-T1 Firmware | < 5.44\(acjb.0.2\)z0 |
| Zyxel | Px3321-T1 | - |
| Zyxel | Pm7300-T0 Firmware | < 5.42\(abyy.2.2\)c0 |
| Zyxel | Pm7300-T0 | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2024-5412?
CVE-2024-5412 is a vulnerability with a CVSS score of 7.5 (HIGH). A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50(ABOM.8)C0 could allow an unauthenticated attacker to cause denial of service (DoS) conditions...
How severe is CVE-2024-5412?
CVE-2024-5412 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-5412?
Check the references section above for vendor advisories and patch information. Affected products include: Zyxel Nebula Lte3301-Plus Firmware, Zyxel Nebula Lte3301-Plus, Zyxel Nebula Fwa505 Firmware, Zyxel Nebula Fwa505, Zyxel Nebula Fwa710 Firmware.