Description

A buffer overflow vulnerability in the packet parser of the third-party library "libclinkc" in Zyxel VMG8825-T50K firmware versions through V5.50(ABOM.8.4)C0 could allow an attacker to cause a temporary denial of service (DoS) condition against the web management interface by sending a crafted HTTP POST request to a vulnerable device.

INFO

Published Date :

2024-12-03T01:15:46.610Z

Last Modified :

2024-12-03T16:31:58.508Z

Source :

Zyxel
AFFECTED PRODUCTS

The following products are affected by CVE-2024-8748 vulnerability.

Vendors Products
Zyxel
  • Ax7501-b0
  • Ax7501-b0 Firmware
  • Ax7501-b1
  • Ax7501-b1 Firmware
  • Dx3300-t0
  • Dx3300-t0 Firmware
  • Dx3300-t1
  • Dx3300-t1 Firmware
  • Dx3301-t0
  • Dx3301-t0 Firmware
  • Dx4510-b0
  • Dx4510-b0 Firmware
  • Dx4510-b1
  • Dx4510-b1 Firmware
  • Dx5401-b0
  • Dx5401-b0 Firmware
  • Dx5401-b1
  • Dx5401-b1 Firmware
  • Dx5401 B1 Firmware
  • Ee6510-10
  • Ee6510-10 Firmware
  • Emg3525-t50b
  • Emg3525-t50b Firmware
  • Emg5523-t50b
  • Emg5523-t50b Firmware
  • Emg5723-t50k
  • Emg5723-t50k Firmware
  • Emg6726-b10a
  • Emg6726-b10a Firmware
  • Ex2210-t0
  • Ex2210-t0 Firmware
  • Ex3300-t0
  • Ex3300-t0 Firmware
  • Ex3300-t1
  • Ex3300-t1 Firmware
  • Ex3301-t0
  • Ex3301-t0 Firmware
  • Ex3500-t0
  • Ex3500-t0 Firmware
  • Ex3501-t0
  • Ex3501-t0 Firmware
  • Ex3510-b0
  • Ex3510-b0 Firmware
  • Ex3510-b1
  • Ex3510-b1 Firmware
  • Ex3600-t0
  • Ex3600-t0 Firmware
  • Ex5401-b0
  • Ex5401-b0 Firmware
  • Ex5401-b1
  • Ex5401-b1 Firmware
  • Ex5501-b0
  • Ex5501-b0 Firmware
  • Ex5510-b0
  • Ex5510-b0 Firmware
  • Ex5512-t0
  • Ex5512-t0 Firmware
  • Ex5600-t1
  • Ex5600-t1 Firmware
  • Ex5601-t0
  • Ex5601-t0 Firmware
  • Ex5601-t1
  • Ex5601-t1 Firmware
  • Ex7501-b0
  • Ex7501-b0 Firmware
  • Ex7710-b0
  • Ex7710-b0 Firmware
  • Lte3301-plus
  • Lte3301-plus Firmware
  • Lte5388-m804
  • Lte5388-m804 Firmware
  • Lte5398-m904
  • Lte5398-m904 Firmware
  • Lte7480-m804
  • Lte7480-m804 Firmware
  • Lte7490-m904
  • Lte7490-m904 Firmware
  • Nebula Lte3301-plus
  • Nebula Lte3301-plus Firmware
  • Nebula Nr5101
  • Nebula Nr5101 Firmware
  • Nebula Nr7101
  • Nebula Nr7101 Firmware
  • Nr7101
  • Nr7101 Firmware
  • Nr7102
  • Nr7102 Firmware
  • Pm3100-t0
  • Pm3100-t0 Firmware
  • Pm5100-t0
  • Pm5100-t0 Firmware
  • Pm7300-t0
  • Pm7300-t0 Firmware
  • Pm7500-t0
  • Pm7500-t0 Firmware
  • Px3321-t1
  • Px3321-t1 Firmware
  • Px5301-t0
  • Px5301-t0 Firmware
  • Vmg3625-t50b
  • Vmg3625-t50b Firmware
  • Vmg3927-b50b
  • Vmg3927-b50b Firmware
  • Vmg3927-t50k
  • Vmg3927-t50k Firmware
  • Vmg4005-b50a
  • Vmg4005-b50a Firmware
  • Vmg4005-b50b
  • Vmg4005-b50b Firmware
  • Vmg4005-b60a
  • Vmg4005-b60a Firmware
  • Vmg4927-b50a
  • Vmg4927-b50a Firmware
  • Vmg8623-t50b
  • Vmg8623-t50b Firmware
  • Vmg8825-t50k
  • Vmg8825-t50k Firmware
  • Wx3100-t0
  • Wx3100-t0 Firmware
  • Wx3401-b0
  • Wx3401-b0 Firmware
  • Wx3401-b1
  • Wx3401-b1 Firmware
  • Wx5600-t0
  • Wx5600-t0 Firmware
  • Wx5610-b0
  • Wx5610-b0 Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-8748.

URL Resource
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-buffer-overflow-and-post-authentication-command-injection-vulnerabilities-in-some-4g-lte-5g-nr-cpe-dsl-ethernet-cpe-fiber-onts-and-wifi-extenders-12-03-2024 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact