CVE-2022-38546
First published: Wed Dec 21 2022(Updated: )
A DNS misconfiguration was found in Zyxel NBG7510 firmware versions prior to V1.00(ABZY.3)C0, which could allow an unauthenticated attacker to access the DNS server when the device is switched to the AP mode.
Credit: security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel NBG7510 firmware | <=1.00\(abzy.2\)c0 | |
| Zyxel NBG7510 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this DNS misconfiguration in Zyxel NBG7510 firmware?
The vulnerability ID for this DNS misconfiguration in Zyxel NBG7510 firmware is CVE-2022-38546.
What is the severity level of CVE-2022-38546?
The severity level of CVE-2022-38546 is critical with a score of 9.8.
How does the DNS misconfiguration impact Zyxel NBG7510 firmware?
The DNS misconfiguration in Zyxel NBG7510 firmware could allow an unauthenticated attacker to access the DNS server when the device is switched to the AP mode.
Which versions of Zyxel NBG7510 firmware are affected by CVE-2022-38546?
Zyxel NBG7510 firmware versions prior to V1.00(ABZY.3)C0, specifically up to V1.00(ABZY.2)C0, are affected by CVE-2022-38546.
How can I fix the DNS misconfiguration in Zyxel NBG7510 firmware?
To fix the DNS misconfiguration in Zyxel NBG7510 firmware, it is recommended to update the firmware to V1.00(ABZY.3)C0 or later using the official Zyxel support website.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zyxel
- canonical/zyxel nbg7510 firmware
- version/zyxel nbg7510 firmware/1.00\(abzy.2\)c0
- canonical/zyxel nbg7510