CVE-2023-43314: Buffer Overflow
First published: Wed Sep 27 2023(Updated: )
** UNSUPPORTED WHEN ASSIGNED **The buffer overflow vulnerability in the Zyxel PMG2005-T20B firmware version V1.00(ABNK.2)b11_C0 could allow an unauthenticated attacker to cause a denial of service condition via a crafted uid.
Credit: security@zyxel.com.tw cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Zyxel PMG2005-T20B firmware | ||
| Zyxel PMG2005-T20B |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this buffer overflow vulnerability?
The vulnerability ID for this buffer overflow vulnerability is CVE-2023-43314.
What is the severity of CVE-2023-43314?
The severity of CVE-2023-43314 is high (7.5).
How does this buffer overflow vulnerability affect Zyxel Pmg2005-t20b Firmware?
This buffer overflow vulnerability allows a remote attacker to cause a denial of service via a crafted script to the uid parameter in the cgi-bin/login.asp component of Zyxel Pmg2005-t20b Firmware.
Is Zyxel Pmg2005-t20b affected by this buffer overflow vulnerability?
No, Zyxel Pmg2005-t20b is not affected by this buffer overflow vulnerability.
How can I fix CVE-2023-43314?
To fix CVE-2023-43314, it is recommended to update to a non-vulnerable version of Zyxel Pmg2005-t20b Firmware or apply any patches or security updates provided by the vendor.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/status
- agent/tags
- agent/type
- agent/weakness
- collector/mitre-cve
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/nvd-index
- vendor/zyxel
- canonical/zyxel pmg2005-t20b firmware
- canonical/zyxel pmg2005-t20b
- status/unsupported