A post-authentication buffer overflow vulnerability in...
Moderate severity
Unreviewed
Published
Dec 3, 2024
to the GitHub Advisory Database
•
Updated Dec 3, 2024
Description
Published by the National Vulnerability Database
Dec 3, 2024
Published to the GitHub Advisory Database
Dec 3, 2024
Last updated
Dec 3, 2024
A post-authentication buffer overflow vulnerability in the parameter "action" of the CGI program in Zyxel VMG3625-T50B firmware versions through V5.50(ABPM.9.2)C0 could allow an authenticated attacker with administrator privileges to cause a temporary denial of service (DoS) condition against the web management interface by sending a crafted HTTP GET request to a vulnerable device if the function ZyEE is enabled.
References