Vulnerability Details CVE-2024-9197
A post-authentication buffer overflow vulnerability in the parameter "action" of the CGI program in Zyxel VMG3625-T50B firmware versions through V5.50(ABPM.9.2)C0 could allow an authenticated attacker with administrator privileges to cause a temporary denial of service (DoS) condition against the web management interface by sending a crafted HTTP GET request to a vulnerable device if the function ZyEE is enabled.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.5%
CVSS Severity
CVSS v3 Score 4.9
Products affected by CVE-2024-9197
-
cpe:2.3:h:zyxel:ax7501-b0:-
-
cpe:2.3:h:zyxel:ax7501-b1:-
-
cpe:2.3:h:zyxel:dx3300-t0:-
-
cpe:2.3:h:zyxel:dx3300-t1:-
-
cpe:2.3:h:zyxel:dx3301-t0:-
-
cpe:2.3:h:zyxel:dx4510-b0:-
-
cpe:2.3:h:zyxel:dx4510-b1:-
-
cpe:2.3:h:zyxel:dx5401-b0:-
-
cpe:2.3:h:zyxel:dx5401-b1:-
-
cpe:2.3:h:zyxel:ee6510-10:-
-
cpe:2.3:h:zyxel:emg3525-t50b:-
-
cpe:2.3:h:zyxel:emg5523-t50b:-
-
cpe:2.3:h:zyxel:emg5723-t50k:-
-
cpe:2.3:h:zyxel:ex3300-t0:-
-
cpe:2.3:h:zyxel:ex3300-t1:-
-
cpe:2.3:h:zyxel:ex3301-t0:-
-
cpe:2.3:h:zyxel:ex3500-t0:-
-
cpe:2.3:h:zyxel:ex3501-t0:-
-
cpe:2.3:h:zyxel:ex3510-b0:-
-
cpe:2.3:h:zyxel:ex3510-b1:-
-
cpe:2.3:h:zyxel:ex3600-t0:-
-
cpe:2.3:h:zyxel:ex5401-b0:-
-
cpe:2.3:h:zyxel:ex5401-b1:-
-
cpe:2.3:h:zyxel:ex5501-b0:-
-
cpe:2.3:h:zyxel:ex5510-b0:-
-
cpe:2.3:h:zyxel:ex5600-t1:-
-
cpe:2.3:h:zyxel:ex5601-t0:-
-
cpe:2.3:h:zyxel:ex5601-t1:-
-
cpe:2.3:h:zyxel:ex7501-b0:-
-
cpe:2.3:h:zyxel:px3321-t1:-
-
cpe:2.3:h:zyxel:px5301-t0:-
-
cpe:2.3:h:zyxel:vmg3625-t50b:-
-
cpe:2.3:h:zyxel:vmg3927-t50k:-
-
cpe:2.3:h:zyxel:vmg8623-t50b:-
-
cpe:2.3:h:zyxel:vmg8825-t50k:-
-
cpe:2.3:h:zyxel:wx5600-t0:-
-
cpe:2.3:o:zyxel:ax7501-b0_firmware:-
-
cpe:2.3:o:zyxel:ax7501-b0_firmware:5.17(abpc.1)c0
-
cpe:2.3:o:zyxel:ax7501-b0_firmware:5.17(abpc.4)c0
-
cpe:2.3:o:zyxel:ax7501-b0_firmware:5.17(abpc.5)c0
-
cpe:2.3:o:zyxel:ax7501-b0_firmware:5.17(abpc.5.2)c0
-
cpe:2.3:o:zyxel:ax7501-b1_firmware:5.17(abpc.4)c0
-
cpe:2.3:o:zyxel:ax7501-b1_firmware:5.17(abpc.5)c0
-
cpe:2.3:o:zyxel:ax7501-b1_firmware:5.17(abpc.5.2)c0
-
cpe:2.3:o:zyxel:dx3300-t0_firmware:5.50(abvy.5)c0
-
cpe:2.3:o:zyxel:dx3300-t0_firmware:5.50(abvy.5.3)c0
-
cpe:2.3:o:zyxel:dx3300-t1_firmware:5.50(abvy.5)c0
-
cpe:2.3:o:zyxel:dx3300-t1_firmware:5.50(abvy.5.3)c0
-
cpe:2.3:o:zyxel:dx3300-t1_firmware:5.50(aby.4)c0
-
cpe:2.3:o:zyxel:dx3301-t0_firmware:-
-
cpe:2.3:o:zyxel:dx3301-t0_firmware:5.50(abvy.5)c0
-
cpe:2.3:o:zyxel:dx3301-t0_firmware:5.50(abvy.5.3)c0
-
cpe:2.3:o:zyxel:dx3301-t0_firmware:5.50(aby.4)c0
-
cpe:2.3:o:zyxel:dx4510-b0_firmware:5.17(abyl.6)c0
-
cpe:2.3:o:zyxel:dx4510-b0_firmware:5.17(abyl.7)b2
-
cpe:2.3:o:zyxel:dx4510-b0_firmware:5.17(abyl.7)c0
-
cpe:2.3:o:zyxel:dx4510-b1_firmware:-
-
cpe:2.3:o:zyxel:dx4510-b1_firmware:5.17(abyl.6)c0
-
cpe:2.3:o:zyxel:dx4510-b1_firmware:5.17(abyl.7)c0
-
cpe:2.3:o:zyxel:dx5401-b0_firmware:-
-
cpe:2.3:o:zyxel:dx5401-b0_firmware:5.17(abyo.1)c0
-
cpe:2.3:o:zyxel:dx5401-b0_firmware:5.17(abyo.5)c0
-
cpe:2.3:o:zyxel:dx5401-b0_firmware:5.17(abyo.6)c0
-
cpe:2.3:o:zyxel:dx5401-b0_firmware:5.17(abyo.6.2)c0
-
cpe:2.3:o:zyxel:dx5401-b1_firmware:5.17(abyo.5)c0
-
cpe:2.3:o:zyxel:dx5401-b1_firmware:5.17(abyo.6)c0
-
cpe:2.3:o:zyxel:dx5401-b1_firmware:5.17(abyo.6.2)c0
-
cpe:2.3:o:zyxel:ee6510-10_firmware:5.19(acjq.0)c0
-
cpe:2.3:o:zyxel:emg3525-t50b_firmware:-
-
cpe:2.3:o:zyxel:emg3525-t50b_firmware:5.50(abpm.6)c0
-
cpe:2.3:o:zyxel:emg3525-t50b_firmware:5.50(abpm.8)c0
-
cpe:2.3:o:zyxel:emg3525-t50b_firmware:5.50(abpm.9)c0
-
cpe:2.3:o:zyxel:emg3525-t50b_firmware:5.50(abpm.9.2)c0
-
cpe:2.3:o:zyxel:emg5523-t50b_firmware:-
-
cpe:2.3:o:zyxel:emg5523-t50b_firmware:5.50(abpm.6)c0
-
cpe:2.3:o:zyxel:emg5523-t50b_firmware:5.50(abpm.8)c0
-
cpe:2.3:o:zyxel:emg5523-t50b_firmware:5.50(abpm.9)c0
-
cpe:2.3:o:zyxel:emg5523-t50b_firmware:5.50(abpm.9.2)c0
-
cpe:2.3:o:zyxel:emg5723-t50k_firmware:-
-
cpe:2.3:o:zyxel:emg5723-t50k_firmware:5.50(abom.7)c0
-
cpe:2.3:o:zyxel:emg5723-t50k_firmware:5.50(abom.8)c0
-
cpe:2.3:o:zyxel:emg5723-t50k_firmware:5.50(abom.8.2)c0
-
cpe:2.3:o:zyxel:emg5723-t50k_firmware:5.50(abom.8.4)c0
-
cpe:2.3:o:zyxel:ex3300-t0_firmware:5.50(abvy.5)c0
-
cpe:2.3:o:zyxel:ex3300-t0_firmware:5.50(abvy.5.3)c0
-
cpe:2.3:o:zyxel:ex3300-t1_firmware:5.50(abvy.5)c0
-
cpe:2.3:o:zyxel:ex3300-t1_firmware:5.50(abvy.5.3)c0
-
cpe:2.3:o:zyxel:ex3300-t1_firmware:5.50(aby.4)c0
-
cpe:2.3:o:zyxel:ex3301-t0_firmware:-
-
cpe:2.3:o:zyxel:ex3301-t0_firmware:5.50(abvy.5)c0
-
cpe:2.3:o:zyxel:ex3301-t0_firmware:5.50(abvy.5.3)c0
-
cpe:2.3:o:zyxel:ex3301-t0_firmware:5.50(aby.4)c0
-
cpe:2.3:o:zyxel:ex3500-t0_firmware:5.44(achr.0)c0
-
cpe:2.3:o:zyxel:ex3500-t0_firmware:5.44(achr.1)c0
-
cpe:2.3:o:zyxel:ex3500-t0_firmware:5.44(achr.2)c0
-
cpe:2.3:o:zyxel:ex3501-t0_firmware:5.44(achr.0)c0
-
cpe:2.3:o:zyxel:ex3501-t0_firmware:5.44(achr.1)c0
-
cpe:2.3:o:zyxel:ex3501-t0_firmware:5.44(achr.2)c0
-
cpe:2.3:o:zyxel:ex3510-b0_firmware:-
-
cpe:2.3:o:zyxel:ex3510-b0_firmware:5.17(abup.11)c0
-
cpe:2.3:o:zyxel:ex3510-b0_firmware:5.17(abup.12)b2
-
cpe:2.3:o:zyxel:ex3510-b0_firmware:5.17(abup.12)c0
-
cpe:2.3:o:zyxel:ex3510-b0_firmware:5.17(abup.4)c1
-
cpe:2.3:o:zyxel:ex3510-b1_firmware:5.17(abup.11)c0
-
cpe:2.3:o:zyxel:ex3510-b1_firmware:5.17(abup.12)c0
-
cpe:2.3:o:zyxel:ex3600-t0_firmware:5.70(acif.0.2)c0
-
cpe:2.3:o:zyxel:ex3600-t0_firmware:5.70(acif.0.3)c0
-
cpe:2.3:o:zyxel:ex5401-b0_firmware:-
-
cpe:2.3:o:zyxel:ex5401-b0_firmware:5.17(abyo.1)c0
-
cpe:2.3:o:zyxel:ex5401-b0_firmware:5.17(abyo.5)c0
-
cpe:2.3:o:zyxel:ex5401-b0_firmware:5.17(abyo.6)c0
-
cpe:2.3:o:zyxel:ex5401-b0_firmware:5.17(abyo.6.2)c0
-
cpe:2.3:o:zyxel:ex5401-b1_firmware:5.17(abyo.5)c0
-
cpe:2.3:o:zyxel:ex5401-b1_firmware:5.17(abyo.6)c0
-
cpe:2.3:o:zyxel:ex5401-b1_firmware:5.17(abyo.6.2)c0
-
cpe:2.3:o:zyxel:ex5501-b0_firmware:-
-
cpe:2.3:o:zyxel:ex5501-b0_firmware:5.17(abry.2)c0
-
cpe:2.3:o:zyxel:ex5501-b0_firmware:5.17(abry.4)c0
-
cpe:2.3:o:zyxel:ex5510-b0_firmware:5.17(abqx.10)b2
-
cpe:2.3:o:zyxel:ex5510-b0_firmware:5.17(abqx.10)c0
-
cpe:2.3:o:zyxel:ex5510-b0_firmware:5.17(abqx.9)c0
-
cpe:2.3:o:zyxel:ex5600-t1_firmware:-
-
cpe:2.3:o:zyxel:ex5600-t1_firmware:5.70(acdz.2)c0
-
cpe:2.3:o:zyxel:ex5601-t0_firmware:-
-
cpe:2.3:o:zyxel:ex5601-t0_firmware:5.70(acdz.2)c0
-
cpe:2.3:o:zyxel:ex5601-t0_firmware:5.70(acdz.3)c0
-
cpe:2.3:o:zyxel:ex5601-t0_firmware:5.70(acdz.3.2)c0
-
cpe:2.3:o:zyxel:ex5601-t1_firmware:-
-
cpe:2.3:o:zyxel:ex5601-t1_firmware:5.70(acdz.2)c0
-
cpe:2.3:o:zyxel:ex5601-t1_firmware:5.70(acdz.3)c0
-
cpe:2.3:o:zyxel:ex5601-t1_firmware:5.70(acdz.3.2)c0
-
cpe:2.3:o:zyxel:ex7501-b0_firmware:5.18(achn.1)c0
-
cpe:2.3:o:zyxel:ex7501-b0_firmware:5.18(achn.1.2)c0
-
cpe:2.3:o:zyxel:px3321-t1_firmware:5.44(achk.0.2)c0
-
cpe:2.3:o:zyxel:px3321-t1_firmware:5.44(achk.0.3)c0
-
cpe:2.3:o:zyxel:px3321-t1_firmware:5.44(acjb.0)c0
-
cpe:2.3:o:zyxel:px3321-t1_firmware:5.44(acjb.0.2)z0
-
cpe:2.3:o:zyxel:px3321-t1_firmware:5.44(acjb.1)c0
-
cpe:2.3:o:zyxel:px5301-t0_firmware:5.44(ackb.0)c0
-
cpe:2.3:o:zyxel:vmg3625-t50b_firmware:-
-
cpe:2.3:o:zyxel:vmg3625-t50b_firmware:5.50(abpm.6)c0
-
cpe:2.3:o:zyxel:vmg3625-t50b_firmware:5.50(abpm.8)c0
-
cpe:2.3:o:zyxel:vmg3625-t50b_firmware:5.50(abpm.9)c0
-
cpe:2.3:o:zyxel:vmg3625-t50b_firmware:5.50(abpm.9.2)c0
-
cpe:2.3:o:zyxel:vmg3927-t50k_firmware:-
-
cpe:2.3:o:zyxel:vmg3927-t50k_firmware:5.50(abom.7)c0
-
cpe:2.3:o:zyxel:vmg3927-t50k_firmware:5.50(abom.8)c0
-
cpe:2.3:o:zyxel:vmg3927-t50k_firmware:5.50(abom.8.2)c0
-
cpe:2.3:o:zyxel:vmg3927-t50k_firmware:5.50(abom.8.4)c0
-
cpe:2.3:o:zyxel:vmg8623-t50b_firmware:-
-
cpe:2.3:o:zyxel:vmg8623-t50b_firmware:5.50(abpm.6)c0
-
cpe:2.3:o:zyxel:vmg8623-t50b_firmware:5.50(abpm.8)c0
-
cpe:2.3:o:zyxel:vmg8623-t50b_firmware:5.50(abpm.9)c0
-
cpe:2.3:o:zyxel:vmg8623-t50b_firmware:5.50(abpm.9.2)c0
-
cpe:2.3:o:zyxel:vmg8825-t50k_firmware:-
-
cpe:2.3:o:zyxel:vmg8825-t50k_firmware:5.50(abom.7)c0
-
cpe:2.3:o:zyxel:vmg8825-t50k_firmware:5.50(abom.8)c0
-
cpe:2.3:o:zyxel:vmg8825-t50k_firmware:5.50(abom.8.2)c0
-
cpe:2.3:o:zyxel:vmg8825-t50k_firmware:5.50(abom.8.4)c0
-
cpe:2.3:o:zyxel:wx5600-t0_firmware:-
-
cpe:2.3:o:zyxel:wx5600-t0_firmware:5.70(acdz.2)c0
-
cpe:2.3:o:zyxel:wx5600-t0_firmware:5.70(aceb.2)c0
-
cpe:2.3:o:zyxel:wx5600-t0_firmware:5.70(aceb.3.2)c0