First published: Mon Jun 05 2023(Updated: )
A buffer overflow vulnerability in the CGI program of the Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 could allow a remote authenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.
Credit: security@zyxel.com.tw
Affected Software | Affected Version | How to fix |
---|---|---|
Zyxel Lte7480-m804 Firmware | <=1.00\(abra.6\)c0 | |
Zyxel Lte7480-m804 | ||
Zyxel Lte7490-m904 Firmware | <=1.00\(abqy.5\)c0 | |
Zyxel Lte7490-m904 | ||
Zyxel NR7101 firmware | <=1.00\(abuv.7\)c0 | |
Zyxel NR7101 | ||
Zyxel Nebula Nr7101 Firmware | <=1.15\(accc.3\)c0 | |
Zyxel Nebula Nr7101 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-27989 is medium.
A remote attacker can exploit CVE-2023-27989 by sending a crafted HTTP request to a vulnerable device.
The impact of CVE-2023-27989 is denial of service (DoS) conditions.
The Zyxel NR7101 firmware versions prior to V1.00(ABUV.8)C0 are affected by CVE-2023-27989.
To fix CVE-2023-27989, it is recommended to update to the latest firmware version provided by Zyxel.