high
7.5
CWE
120 119
Advisory Published
Updated

CVE-2024-5412: Buffer Overflow

First published: Tue Sep 03 2024(Updated: )

A buffer overflow vulnerability in the library "libclinkc" of the Zyxel VMG8825-T50K firmware version 5.50(ABOM.8)C0 could allow an unauthenticated attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device.

Credit: security@zyxel.com.tw

Affected SoftwareAffected VersionHow to fix
All of
Zyxel Nebula LTE3301-Plus Firmware<1.18\(acca.4\)c0
Zyxel Nebula LTE3301-Plus Firmware
All of
Zyxel Nebula Fwa505 Firmware<1.18\(acko.4\)c0
Zyxel Nebula Fwa505 Firmware
All of
Zyxel Nebula Fwa710<1.18\(acgc.4\)c0
Zyxel Nebula
All of
Zyxel Nebula FWA510<1.18\(acgd.4\)c0
Zyxel Nebula FWA510 Firmware
All of
Zyxel WX5600-T0 Firmware<5.70\(aceb.3.2\)c0
Zyxel Wx5600-t0 Firmware
All of
Zyxel WX3401-B0 Firmware<5.17\(abve.2.5\)c0
Zyxel Wx3401-b0 Firmware
All of
Zyxel WX3100-T0 Firmware<5.50\(abvl.4.2\)c0
Zyxel WX3100-T0 Firmware
All of
Zyxel SCR50AXE Firmware<1.10\(acgn.3\)c0
Zyxel SCR50AXE
All of
Zyxel Px3321-t1<5.44\(acjb.0.2\)z0
Zyxel Px3321-t1 Firmware
All of
Zyxel PM7300-T0 Firmware<5.42\(abyy.2.2\)c0
Zyxel Pm7300-t0 Firmware
All of
Zyxel PM5100-T0<5.42\(acbf.2.1\)c0
Zyxel PM5100-T0
All of
Zyxel PM3100-T0 Firmware<5.42\(acbf.2.1\)c0
Zyxel PM3100-T0 Firmware
All of
Zyxel Ax7501-B1<5.17\(abpc.5.2\)c0
Zyxel Ax7501-B1 Firmware
All of
Zyxel AX7501-B0<5.17\(abpc.5.2\)c0
Zyxel AX7501-B0 firmware
All of
Zyxel VMG8825-T50K<5.50\(abom.8.4\)c0
Zyxel VMG8825-T50K firmware
All of
Zyxel VMG8623-T50B<5.50\(abpm.9.2\)c0
Zyxel VMG8623-T50B Firmware
All of
Zyxel VMG4005-B60A<5.15\(abqa.2.2\)c0
Zyxel VMG4005-B60A
All of
Zyxel VMG4005-B50A firmware<5.15\(abqa.2.2\)c0
Zyxel VMG4005-B50A firmware
All of
Zyxel VMG3927-T50K<5.50\(abom.8.4\)c0
Zyxel VMG3927-T50K Firmware
All of
Zyxel VMG3625-T50B Firmware<5.50\(abpm.9.2\)c0
Zyxel VMG3625-T50B firmware
All of
Zyxel EMG5723-T50K<5.50\(abom.8.4\)c0
Zyxel EMG5723-T50K Firmware
All of
Zyxel EMG5523-T50B<5.50\(abpm.9.2\)c0
Zyxel EMG5523-T50B Firmware
All of
Zyxel EMG3525-T50B Firmware<5.50\(abpm.9.2\)c0
Zyxel EMG3525-T50B Firmware
All of
Zyxel EX7710-B0<5.18\(acak.1\)c1
Zyxel EX7710-B0
All of
Zyxel Ex7501-b0<5.18\(achn.1.2\)c0
Zyxel Ex7501-b0 Firmware
All of
Zyxel EX5601-T1 Firmware<5.70\(acdz.3.2\)c0
Zyxel EX5601-T1 Firmware
All of
Zyxel Ex5601-T0<5.70\(acdz.3.2\)c0
Zyxel Ex5601-T0 Firmware
All of
Zyxel EX5512-T0<5.70\(aceg.3\)c2
Zyxel EX5512-T0 Firmware
All of
Zyxel EX5510<5.17\(abqx.10\)b2
Zyxel EX5510-B0 Firmware
All of
Zyxel Ex5401-B1 Firmware<5.17\(abyo.6.2\)c0
Zyxel Ex5401-B1 Firmware
All of
Zyxel Ex5401-B0<5.17\(abyo.6.2\)c0
Zyxel Ex5401-B0
All of
Zyxel Ex3510 Firmware<5.17\(abup.12\)b2
Zyxel Ex3510-B0 Firmware
All of
Zyxel EX3501-T0<5.44\(achr.2\)c0
Zyxel EX3501-T0
All of
Zyxel EX3500-T0<5.44\(achr.2\)c0
Zyxel EX3500-T0
All of
Zyxel Ex3301-T0<5.50\(abvy.5.3\)c0
Zyxel Ex3301-T0
All of
Zyxel Ex3300-T1<5.50\(abvy.5.3\)c0
Zyxel Ex3300-T1
All of
Zyxel Ex3300-T0 Firmware<5.50\(abvy.5.3\)c0
Zyxel Ex3300-T0 Firmware
All of
Zyxel Dx5401-B1 Firmware<5.17\(abyo.6.2\)c0
Zyxel Dx5401-B1 Firmware
All of
Zyxel DX5401-B0<5.17\(abyo.6.2\)c0
Zyxel DX5401-B0 firmware
All of
Zyxel Dx4510-B0<5.17\(abyl.7\)b2
Zyxel Dx4510-b0 Firmware
All of
Zyxel Dx3300-T0<5.50\(abvy.5.3\)c0
Zyxel Dx3301-t0 Firmware
All of
Zyxel Dx3300-T1<5.50\(abvy.5.3\)c0
DX3300 DX3300-T1 Firmware
All of
Zyxel Dx3300-t0<5.50\(abvy.5.3\)c0
Zyxel Dx3300-T0
All of
Zyxel NR7501 Firmware<1.00\(aceh.1\)c0
Zyxel NR7501 Firmware
All of
Zyxel NR7303<1.00\(acei.1\)b4
Zyxel NR7303
All of
Zyxel Nr7302 Firmware<1.00\(acha.4\)c0
Zyxel Nr7302 Firmware
All of
Zyxel NR7103<1.00\(accz.4\)c0
Zyxel NR7103
All of
Zyxel NR5307 Firmware<1.00\(acjt.0\)b6
Zyxel NR5307 Firmware
All of
Zyxel NR5103ev2<1.00\(aciq.1\)c0
Zyxel NR5103ev2
All of
Zyxel NR5103<4.19\(abyc.6\)c0
Zyxel NR5103 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-5412?

    CVE-2024-5412 has been classified as a denial of service vulnerability which could lead to significant disruption in affected devices.

  • How do I fix CVE-2024-5412?

    To fix CVE-2024-5412, you should update the firmware of the affected Zyxel devices to the latest version provided by Zyxel.

  • What devices are affected by CVE-2024-5412?

    CVE-2024-5412 affects multiple Zyxel devices, specifically those using libclinkc in the firmware versions mentioned in the advisory.

  • Can CVE-2024-5412 be exploited remotely?

    Yes, CVE-2024-5412 can be exploited remotely by an unauthenticated attacker through crafted HTTP requests.

  • What type of vulnerability is CVE-2024-5412?

    CVE-2024-5412 is a buffer overflow vulnerability which can lead to denial of service conditions in the affected devices.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203