CVE-2023-4397
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') (CWE-120)
Published: Nov 28, 2023 / Updated: 11mo ago
010
CVSS 4.4EPSS 0.04%Medium
CVE info copied to clipboard
A buffer overflow vulnerability in the Zyxel ATP series firmware version 5.37, USG FLEX series firmware version 5.37, USG FLEX 50(W) series firmware version 5.37, and USG20(W)-VPN series firmware version 5.37, could allow an authenticated local attacker with administrator privileges to cause denial-of-service (DoS) conditions by executing the CLI command with crafted strings on an affected device.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Timeline
First Article
Feedly found the first article mentioning CVE-2023-4397. See article
Nov 28, 2023 at 7:06 AM / VulDB Recent Entries
CVSS Estimate
Feedly estimated the CVSS score as HIGH
Nov 28, 2023 at 7:06 AM
Detection in Vulnerability Scanners
Detection for the vulnerability has been added to Nessus (186481)
Nov 30, 2023 at 12:15 PM
EPSS
EPSS Score was set to: 0.04% (Percentile: 5.7%)
Nov 30, 2023 at 3:26 PM
Affected Systems
Zyxel/zld
+null more
Patches
www.zyxel.com
+null more
Attack Patterns
CAPEC-10: Buffer Overflow via Environment Variables
+null more
References
Zyxel security advisory for multiple vulnerabilities in firewalls and APs
CVE-2023-37926 A buffer overflow vulnerability in some firewall versions could allow an authenticated local attacker to cause denial-of-service (DoS) conditions by executing the CLI command to dump system logs on an affected device. CVE-2023-37925 An improper privilege management vulnerability in the debug CLI command of some firewall and AP versions could allow an authenticated local attacker to access system files on an affected device.
News
Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices
CVE-2023-37926 – A buffer overflow vulnerability in some firewall versions could allow an authenticated local attacker to cause denial-of-service (DoS) conditions by executing the CLI command to dump system logs on an affected device. CVE-2023-37925 – An improper privilege management vulnerability in the debug CLI command of some firewall and AP versions could allow an authenticated local attacker to access system files on an affected device.
Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices – Source: securityaffairs.com
CVE-2023-37926 – A buffer overflow vulnerability in some firewall versions could allow an authenticated local attacker to cause denial-of-service (DoS) conditions by executing the CLI command to dump system logs on an affected device. CVE-2023-37925 – An improper privilege management vulnerability in the debug CLI command of some firewall and AP versions could allow an authenticated local attacker to access system files on an affected device.
Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices
CVE-2023-37926 – A buffer overflow vulnerability in some firewall versions could allow an authenticated local attacker to cause denial-of-service (DoS) conditions by executing the CLI command to dump system logs on an affected device. CVE-2023-37925 – An improper privilege management vulnerability in the debug CLI command of some firewall and AP versions could allow an authenticated local attacker to access system files on an affected device.
Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices
CVE-2023-37926 – A buffer overflow vulnerability in some firewall versions could allow an authenticated local attacker to cause denial-of-service (DoS) conditions by executing the CLI command to dump system logs on an affected device. CVE-2023-37925 – An improper privilege management vulnerability in the debug CLI command of some firewall and AP versions could allow an authenticated local attacker to access system files on an affected device.
Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices
Zyxel addressed tens of vulnerabilities that expose users to cyber attacks, including command injection and authentication bypass. Taiwanese vendor Zyxel addressed tens of vulnerabilities in its firewalls and access points. The addressed issues are tracked as CVE-2023-35136, CVE-2023-35139, CVE-2023-37925, CVE-2023-37926, CVE-2023-4397, CVE-2023-4398, CVE-2023-5650, CVE-2023-5797, CVE-2023-5960. Threat actors can exploit the vulnerabilities to steal cookies, access configuration files, carry out command injection and denial-of-service […] This article has been indexed from Security Affairs Read the original article: Zyxel fixed tens of flaws in Firewalls, Access Points, and NAS devices
See 11 more articles and social media posts