CVE-2023-28768
First published: Mon Aug 14 2023(Updated: )
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30 firmware version V4.80(ACAR.1), and XS1930-10 firmware version V4.80(ABQE.1) could allow an unauthenticated LAN-based attacker to cause denial-of-service (DoS) conditions by sending crafted frames to an affected switch.
Credit: security@zyxel.com.tw security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel XGS2220-30 firmware | =4.80\(abxn.1\) | |
| Zyxel XGS2220-30 | ||
| Zyxel Xgs2220-30f Firmware | =4.80\(abye.1\) | |
| Zyxel Xgs2220-30f | ||
| Zyxel Xgs2220-30hp Firmware | =4.80\(abxo.1\) | |
| Zyxel Xgs2220-30hp | ||
| Zyxel Xgs2220-54 Firmware | =4.80\(abxp.1\) | |
| Zyxel Xgs2220-54 | ||
| Zyxel Xgs2220-54fp Firmware | =4.80\(acce.1\) | |
| Zyxel Xgs2220-54fp | ||
| Zyxel Xgs2220-54hp Firmware | =4.80\(abxq.1\) | |
| Zyxel Xgs2220-54hp | ||
| Zyxel Xmg1930-30 Firmware | =4.80\(acar.1\) | |
| Zyxel Xmg1930-30 | ||
| Zyxel Xmg1930-30hp Firmware | =4.80\(acas.1\) | |
| Zyxel Xmg1930-30hp | ||
| Zyxel Xs1930-10 Firmware | =4.80\(abqe.1\) | |
| Zyxel Xs1930-10 | ||
| Zyxel Xs1930-12f Firmware | =4.80\(abzv.1\) | |
| Zyxel Xs1930-12f | ||
| Zyxel Xs1930-12hp Firmware | =4.80\(abqf.1\) | |
| Zyxel Xs1930-12hp |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-28768.
What is the severity of CVE-2023-28768?
The severity of CVE-2023-28768 is 6.5 (medium).
Which software versions are affected by CVE-2023-28768?
Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30 firmware version V4.80(ACAR.1), and XS1930-10 firmware version V4.80(ABQE.1) are affected by CVE-2023-28768.
What is the impact of CVE-2023-28768?
CVE-2023-28768 could allow an unauthenticated LAN-based attacker to cause denial-of-service (DoS) conditions by sending crafted frames.
Where can I find more information about CVE-2023-28768?
You can find more information about CVE-2023-28768 in the Zyxel Security Advisory for DoS Vulnerability of XGS2220, XMG1930, and XS1930 Series Switches.
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/event
- agent/type
- agent/weakness
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zyxel
- canonical/zyxel xgs2220-30 firmware
- version/zyxel xgs2220-30 firmware/4.80\(abxn.1\)
- canonical/zyxel xgs2220-30
- canonical/zyxel xgs2220-30f firmware
- version/zyxel xgs2220-30f firmware/4.80\(abye.1\)
- canonical/zyxel xgs2220-30f
- canonical/zyxel xgs2220-30hp firmware
- version/zyxel xgs2220-30hp firmware/4.80\(abxo.1\)
- canonical/zyxel xgs2220-30hp
- canonical/zyxel xgs2220-54 firmware
- version/zyxel xgs2220-54 firmware/4.80\(abxp.1\)
- canonical/zyxel xgs2220-54
- canonical/zyxel xgs2220-54fp firmware
- version/zyxel xgs2220-54fp firmware/4.80\(acce.1\)
- canonical/zyxel xgs2220-54fp
- canonical/zyxel xgs2220-54hp firmware
- version/zyxel xgs2220-54hp firmware/4.80\(abxq.1\)
- canonical/zyxel xgs2220-54hp
- canonical/zyxel xmg1930-30 firmware
- version/zyxel xmg1930-30 firmware/4.80\(acar.1\)
- canonical/zyxel xmg1930-30
- canonical/zyxel xmg1930-30hp firmware
- version/zyxel xmg1930-30hp firmware/4.80\(acas.1\)
- canonical/zyxel xmg1930-30hp
- canonical/zyxel xs1930-10 firmware
- version/zyxel xs1930-10 firmware/4.80\(abqe.1\)
- canonical/zyxel xs1930-10
- canonical/zyxel xs1930-12f firmware
- version/zyxel xs1930-12f firmware/4.80\(abzv.1\)
- canonical/zyxel xs1930-12f
- canonical/zyxel xs1930-12hp firmware
- version/zyxel xs1930-12hp firmware/4.80\(abqf.1\)
- canonical/zyxel xs1930-12hp