CVE-2023-28769: Buffer Overflow
First published: Thu Apr 27 2023(Updated: )
The buffer overflow vulnerability in the library “libclinkc.so” of the web server “zhttpd” in Zyxel DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0 could allow a remote unauthenticated attacker to execute some OS commands or to cause denial-of-service (DoS) conditions on a vulnerable device.
Credit: security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel DX5401-B0 firmware | <5.17\(abyo.1\)c0 | |
| Zyxel DX5401-B0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID is CVE-2023-28769.
What is the affected software?
The affected software is Zyxel DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0.
What is the severity of CVE-2023-28769?
The severity of CVE-2023-28769 is critical with a CVSS score of 9.8.
What is the impact of this vulnerability?
This vulnerability could allow a remote unauthenticated attacker to execute OS commands or cause denial-of-service conditions on a vulnerable device.
Is there a fix available for this vulnerability?
Yes, the fix for this vulnerability is to update the Zyxel DX5401-B0 firmware to version V5.17(ABYO.1)C0 or later.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/tags
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/zyxel
- canonical/zyxel dx5401-b0 firmware
- canonical/zyxel dx5401-b0