CVE-2023-6397: Null Pointer Dereference
First published: Tue Feb 20 2024(Updated: )
A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 through 5.37 Patch 1 could allow a LAN-based attacker to cause denial-of-service (DoS) conditions by downloading a crafted RAR compressed file onto a LAN-side host if the firewall has the “Anti-Malware” feature enabled.
Credit: security@zyxel.com.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel ATP series firmware | >=4.32<=5.37 Patch 1 | |
| Zyxel USG FLEX series firmware | >=4.50<=5.37 Patch 1 | |
| All of | ||
| Any of | ||
| Zyxel ZyWall ATP100 Firmware | >=4.32<5.37 | |
| Zyxel ZyWall ATP100 Firmware | =5.37 | |
| Zyxel ZyWall ATP100 Firmware | =5.37-patch1 | |
| Zyxel ATP100 Firmware | ||
| All of | ||
| Any of | ||
| Zyxel ATP100W Firmware | >=4.32<5.37 | |
| Zyxel ATP100W Firmware | =5.37 | |
| Zyxel ATP100W Firmware | =5.37-patch1 | |
| Zyxel ATP100W Firmware | ||
| All of | ||
| Any of | ||
| Zyxel ATP200 firmware | >=4.32<5.37 | |
| Zyxel ATP200 firmware | =5.37 | |
| Zyxel ATP200 firmware | =5.37-patch1 | |
| Zyxel Zywall ATP200 | ||
| All of | ||
| Any of | ||
| Zyxel ATP500 Firmware | >=4.32<5.37 | |
| Zyxel ATP500 Firmware | =5.37 | |
| Zyxel ATP500 Firmware | =5.37-patch1 | |
| Zyxel ATP500 Firmware | ||
| All of | ||
| Any of | ||
| Zyxel Zywall ATP700 | >=4.32<5.37 | |
| Zyxel Zywall ATP700 | =5.37 | |
| Zyxel Zywall ATP700 | =5.37-patch1 | |
| Zyxel ATP700 Firmware | ||
| All of | ||
| Any of | ||
| Zyxel Zywall ATP800 Firmware | >=4.32<5.37 | |
| Zyxel Zywall ATP800 Firmware | =5.37 | |
| Zyxel Zywall ATP800 Firmware | =5.37-patch1 | |
| Zyxel Zywall ATP800 Firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG Flex 100 firmware | >=4.50<5.37 | |
| Zyxel USG Flex 100 firmware | =5.37 | |
| Zyxel USG Flex 100 firmware | =5.37-patch1 | |
| Zyxel USG Flex 100 firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 100ax firmware | >=4.50<5.37 | |
| Zyxel USG FLEX 100ax firmware | =5.37 | |
| Zyxel USG FLEX 100ax firmware | =5.37-patch1 | |
| Zyxel USG FLEX 100ax firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 100ax firmware | >=4.50<5.37 | |
| Zyxel USG FLEX 100ax firmware | =5.37 | |
| Zyxel USG FLEX 100ax firmware | =5.37-patch1 | |
| Zyxel USG Flex 100HP | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 100w firmware | >=4.50<5.37 | |
| Zyxel USG FLEX 100w firmware | =5.37 | |
| Zyxel USG FLEX 100w firmware | =5.37-patch1 | |
| Zyxel USG FLEX 100w firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX firmware | >=4.50<5.37 | |
| Zyxel USG FLEX firmware | =5.37 | |
| Zyxel USG FLEX firmware | =5.37-patch1 | |
| Zyxel USG FLEX 200 firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG Flex 200HP Firmware | >=4.50<5.37 | |
| Zyxel USG Flex 200HP Firmware | =5.37 | |
| Zyxel USG Flex 200HP Firmware | =5.37-patch1 | |
| Zyxel USG FLEX 200h firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG Flex 200HP Firmware | >=4.50<5.37 | |
| Zyxel USG Flex 200HP Firmware | =5.37 | |
| Zyxel USG Flex 200HP Firmware | =5.37-patch1 | |
| Zyxel USG Flex 200HP Firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 50(W) series firmware | >=4.50<5.37 | |
| Zyxel USG FLEX 50(W) series firmware | =5.37 | |
| Zyxel USG FLEX 50(W) series firmware | =5.37-patch1 | |
| Zyxel USG FLEX 50w | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX firmware | >=4.50<5.37 | |
| Zyxel USG FLEX firmware | =5.37 | |
| Zyxel USG FLEX firmware | =5.37-patch1 | |
| Zyxel USG FLEX 500 firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 500h | >=4.50<5.37 | |
| Zyxel USG FLEX 500h | =5.37 | |
| Zyxel USG FLEX 500h | =5.37-patch1 | |
| Zyxel USG FLEX 500h firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 50w | >=4.50<5.37 | |
| Zyxel USG FLEX 50w | =5.37 | |
| Zyxel USG FLEX 50w | =5.37-patch1 | |
| Zyxel USG FLEX 50(W) series firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX firmware | >=4.50<5.37 | |
| Zyxel USG FLEX firmware | =5.37 | |
| Zyxel USG FLEX firmware | =5.37-patch1 | |
| Zyxel USG FLEX 700 firmware | ||
| All of | ||
| Any of | ||
| Zyxel USG FLEX 700h firmware | >=4.50<5.37 | |
| Zyxel USG FLEX 700h firmware | =5.37 | |
| Zyxel USG FLEX 700h firmware | =5.37-patch1 | |
| Zyxel USG FLEX 700h firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-6397?
CVE-2023-6397 is classified as a denial-of-service vulnerability.
How do I fix CVE-2023-6397?
To fix CVE-2023-6397, update Zyxel ATP and USG FLEX series firmware to versions 5.37 Patch 2 or later.
Which Zyxel firmware versions are affected by CVE-2023-6397?
CVE-2023-6397 affects Zyxel ATP series firmware versions 4.32 to 5.37 Patch 1 and USG FLEX series firmware versions 4.50 to 5.37 Patch 1.
Can CVE-2023-6397 be exploited remotely?
CVE-2023-6397 requires a LAN-based attacker to exploit the vulnerability.
What type of attack can CVE-2023-6397 facilitate?
CVE-2023-6397 can cause denial-of-service (DoS) conditions on affected devices.
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/severity
- agent/last-modified-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- vendor/zyxel
- canonical/zyxel atp series firmware
- canonical/zyxel usg flex series firmware
- canonical/zyxel zywall atp100 firmware
- version/zyxel zywall atp100 firmware/4.32
- version/zyxel zywall atp100 firmware/5.37
- version/zyxel zywall atp100 firmware/5.37-patch1
- canonical/zyxel atp100 firmware
- canonical/zyxel atp100w firmware
- version/zyxel atp100w firmware/4.32
- version/zyxel atp100w firmware/5.37
- version/zyxel atp100w firmware/5.37-patch1
- canonical/zyxel atp200 firmware
- version/zyxel atp200 firmware/4.32
- version/zyxel atp200 firmware/5.37
- version/zyxel atp200 firmware/5.37-patch1
- canonical/zyxel zywall atp200
- canonical/zyxel atp500 firmware
- version/zyxel atp500 firmware/4.32
- version/zyxel atp500 firmware/5.37
- version/zyxel atp500 firmware/5.37-patch1
- canonical/zyxel zywall atp700
- version/zyxel zywall atp700/4.32
- version/zyxel zywall atp700/5.37
- version/zyxel zywall atp700/5.37-patch1
- canonical/zyxel atp700 firmware
- canonical/zyxel zywall atp800 firmware
- version/zyxel zywall atp800 firmware/4.32
- version/zyxel zywall atp800 firmware/5.37
- version/zyxel zywall atp800 firmware/5.37-patch1
- canonical/zyxel usg flex 100 firmware
- version/zyxel usg flex 100 firmware/4.50
- version/zyxel usg flex 100 firmware/5.37
- version/zyxel usg flex 100 firmware/5.37-patch1
- canonical/zyxel usg flex 100ax firmware
- version/zyxel usg flex 100ax firmware/4.50
- version/zyxel usg flex 100ax firmware/5.37
- version/zyxel usg flex 100ax firmware/5.37-patch1
- canonical/zyxel usg flex 100hp
- canonical/zyxel usg flex 100w firmware
- version/zyxel usg flex 100w firmware/4.50
- version/zyxel usg flex 100w firmware/5.37
- version/zyxel usg flex 100w firmware/5.37-patch1
- canonical/zyxel usg flex firmware
- version/zyxel usg flex firmware/4.50
- version/zyxel usg flex firmware/5.37
- version/zyxel usg flex firmware/5.37-patch1
- canonical/zyxel usg flex 200 firmware
- canonical/zyxel usg flex 200hp firmware
- version/zyxel usg flex 200hp firmware/4.50
- version/zyxel usg flex 200hp firmware/5.37
- version/zyxel usg flex 200hp firmware/5.37-patch1
- canonical/zyxel usg flex 200h firmware
- canonical/zyxel usg flex 50(w) series firmware
- version/zyxel usg flex 50(w) series firmware/4.50
- version/zyxel usg flex 50(w) series firmware/5.37
- version/zyxel usg flex 50(w) series firmware/5.37-patch1
- canonical/zyxel usg flex 50w
- canonical/zyxel usg flex 500 firmware
- canonical/zyxel usg flex 500h
- version/zyxel usg flex 500h/4.50
- version/zyxel usg flex 500h/5.37
- version/zyxel usg flex 500h/5.37-patch1
- canonical/zyxel usg flex 500h firmware
- version/zyxel usg flex 50w/4.50
- version/zyxel usg flex 50w/5.37
- version/zyxel usg flex 50w/5.37-patch1
- canonical/zyxel usg flex 700 firmware
- canonical/zyxel usg flex 700h firmware
- version/zyxel usg flex 700h firmware/4.50
- version/zyxel usg flex 700h firmware/5.37
- version/zyxel usg flex 700h firmware/5.37-patch1