← Back

CVE-2022-43393

nvd nist
Published: Jan 11, 2023Modified: Nov 21, 2024

JSON object

Loading...
8.2
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Exploitability: 3.9 / Impact: 4.2
Source: NVD

Description

An improper check for unusual or exceptional conditions in the HTTP request processing function of Zyxel GS1920-24v2 firmware prior to V4.70(ABMH.8)C0, which could allow an unauthenticated attacker to corrupt the contents of the memory and result in a denial-of-service (DoS) condition on a vulnerable device.

Affected (47)

Products: Zyxel: Gs1350 6hp Firmware, Gs1350 12hp Firmware, Gs1350 18hp Firmware, Gs1350 26hp Firmware, Gs1915 8 Firmware, Gs1915 8ep Firmware, Gs1915 24e Firmware, Gs1915 24ep Firmware, Gs1920 24v2 Firmware, Gs1920 48v2 Firmware, Gs1920 24hpv2 Firmware, Gs1920 48hpv2 Firmware, Gs2220 10 Firmware, Gs2220 28 Firmware, Gs2220 50 Firmware, Gs2220 10hp Firmware, Gs2220 28hp Firmware, Gs2220 50hp Firmware, Xgs1930 28 Firmware, Xgs1930 28hp Firmware, Xgs1930 52 Firmware, Xgs1930 52hp Firmware, Xs1930 10 Firmware, Xs1930 12hp Firmware, Xs1930 12f Firmware, Xgs2210 28 Firmware, Xgs2210 52 Firmware, Xgs2210 28hp Firmware, Xgs2210 52hp Firmware, Xgs2220 30 Firmware, Xgs2220 30hp Firmware, Xgs2220 30f Firmware, Xgs2220 54 Firmware, Xgs2220 54hp Firmware, Xgs2220 54fp Firmware, Xgs4600 32 Firmware, Xgs4600 32f Firmware, Xgs4600 52f Firmware, Xmg1930 30 Firmware, Xmg1930 30hp Firmware, Xs3800 28 Firmware, Mgs3500 24s Firmware, Mgs3520 28 Firmware, Mgs3520 28f Firmware, Mgs3530 28 Firmware
Zyxel
45 products
Gs1350 6hp Firmware
Gs1350 12hp Firmware
Gs1350 18hp Firmware
Gs1350 26hp Firmware
Gs1915 8 Firmware
Gs1915 8ep Firmware
Gs1915 24e Firmware
Gs1915 24ep Firmware
Gs1920 24v2 Firmware
Gs1920 48v2 Firmware
Gs1920 24hpv2 Firmware
Gs1920 48hpv2 Firmware
Gs2220 10 Firmware
Gs2220 28 Firmware
Gs2220 50 Firmware
Gs2220 10hp Firmware
Gs2220 28hp Firmware
Gs2220 50hp Firmware
Xgs1930 28 Firmware
Xgs1930 28hp Firmware
Xgs1930 52 Firmware
Xgs1930 52hp Firmware
Xs1930 10 Firmware
Xs1930 12hp Firmware
Xs1930 12f Firmware
Xgs2210 28 Firmware
Xgs2210 52 Firmware
Xgs2210 28hp Firmware
Xgs2210 52hp Firmware
Xgs2220 30 Firmware
Xgs2220 30hp Firmware
Xgs2220 30f Firmware
Xgs2220 54 Firmware
Xgs2220 54hp Firmware
Xgs2220 54fp Firmware
Xgs4600 32 Firmware
Xgs4600 32f Firmware
Xgs4600 52f Firmware
Xmg1930 30 Firmware
Xmg1930 30hp Firmware
Xs3800 28 Firmware
Mgs3500 24s Firmware
Mgs3520 28 Firmware
Mgs3520 28f Firmware
Mgs3530 28 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1350 6hp Firmware
Before 4.70\(abpi.5\)c0
Running on/withPlatform Versions
Zyxel
Gs1350 6hp
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1350 12hp Firmware
Before 4.70\(abpj.5\)c0
Running on/withPlatform Versions
Zyxel
Gs1350 12hp
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1350 18hp Firmware
Before 4.70\(abpk.5\)c0
Running on/withPlatform Versions
Zyxel
Gs1350 18hp
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1350 26hp Firmware
Before 4.70\(abpl.5\)c0
Running on/withPlatform Versions
Zyxel
Gs1350 26hp
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1915 8 Firmware
Before 4.70\(acap.3\)c0
Running on/withPlatform Versions
Zyxel
Gs1915 8
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1915 8ep Firmware
Before 4.70\(acaq.3\)c0
Running on/withPlatform Versions
Zyxel
Gs1915 8ep
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1915 24e Firmware
Before 4.70\(acdr.3\)c0
Running on/withPlatform Versions
Zyxel
Gs1915 24e
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1915 24ep Firmware
Before 4.70\(acds.3\)c0
Running on/withPlatform Versions
Zyxel
Gs1915 24ep
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1920 24v2 Firmware
Before 4.70\(abmh.8\)c0
Running on/withPlatform Versions
Zyxel
Gs1920 24v2
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1920 48v2 Firmware
Before 4.70\(abmj.8\)c0
Running on/withPlatform Versions
Zyxel
Gs1920 48v2
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1920 24hpv2 Firmware
Before 4.70\(abmi.8\)c0
Running on/withPlatform Versions
Zyxel
Gs1920 24hpv2
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs1920 48hpv2 Firmware
Before 4.70\(abmk.8\)c0
Running on/withPlatform Versions
Zyxel
Gs1920 48hpv2
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs2220 10 Firmware
Before 4.70\(abro.6\)c0
Running on/withPlatform Versions
Zyxel
Gs2220 10
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs2220 28 Firmware
Before 4.70\(abrq.6\)c0
Running on/withPlatform Versions
Zyxel
Gs2220 28
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs2220 50 Firmware
Before 4.70\(abrs.6\)c0
Running on/withPlatform Versions
Zyxel
Gs2220 50
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs2220 10hp Firmware
Before 4.70\(abrp.6\)c0
Running on/withPlatform Versions
Zyxel
Gs2220 10hp
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs2220 28hp Firmware
Before 4.70\(abrr.6\)c0
Running on/withPlatform Versions
Zyxel
Gs2220 28hp
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Gs2220 50hp Firmware
Before 4.70\(abrt.6\)c0
Running on/withPlatform Versions
Zyxel
Gs2220 50hp
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs1930 28 Firmware
Before 4.70\(abht.5\)c0
Running on/withPlatform Versions
Zyxel
Xgs1930 28
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs1930 28hp Firmware
Before 4.70\(abhs.5\)c0
Running on/withPlatform Versions
Zyxel
Xgs1930 28hp
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs1930 52 Firmware
Before 4.70\(abhu.5\)c0
Running on/withPlatform Versions
Zyxel
Xgs1930 52
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs1930 52hp Firmware
Before 4.70\(abhv.5\)c0
Running on/withPlatform Versions
Zyxel
Xgs1930 52hp
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xs1930 10 Firmware
Before 4.80\(abqe.0\)c0
Running on/withPlatform Versions
Zyxel
Xs1930 10
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xs1930 12hp Firmware
Before 4.80\(abqf.0\)c0
Running on/withPlatform Versions
Zyxel
Xs1930 12hp
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xs1930 12f Firmware
Before 4.80\(abzv.0\)c0
Running on/withPlatform Versions
Zyxel
Xs1930 12f
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2210 28 Firmware
Before 4.70\(aazj.2\)c0
Running on/withPlatform Versions
Zyxel
Xgs2210 28
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2210 52 Firmware
Before 4.70\(aazk.2\)c0
Running on/withPlatform Versions
Zyxel
Xgs2210 52
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2210 28hp Firmware
Before 4.70\(aazl.2\)c0
Running on/withPlatform Versions
Zyxel
Xgs2210 28hp
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2210 52hp Firmware
Before 4.70\(aazm.2\)c0
Running on/withPlatform Versions
Zyxel
Xgs2210 52hp
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2220 30 Firmware
Before 4.80\(abxn.1\)c0
Running on/withPlatform Versions
Zyxel
Xgs2220 30
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2220 30hp Firmware
Before 4.80\(abxo.1\)c0
Running on/withPlatform Versions
Zyxel
Xgs2220 30hp
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2220 30f Firmware
Before 4.80\(abye.1\)c0
Running on/withPlatform Versions
Zyxel
Xgs2220 30f
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2220 54 Firmware
Before 4.80\(abxp.1\)c0
Running on/withPlatform Versions
Zyxel
Xgs2220 54
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2220 54hp Firmware
Before 4.80\(abxq.1\)c0
Running on/withPlatform Versions
Zyxel
Xgs2220 54hp
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs2220 54fp Firmware
Before 4.80\(acce.1\)c0
Running on/withPlatform Versions
Zyxel
Xgs2220 54fp
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs4600 32 Firmware
Before 4.70\(abbh.4\)c0
Running on/withPlatform Versions
Zyxel
Xgs4600 32
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs4600 32f Firmware
Before 4.70\(abbi.4\)c0
Running on/withPlatform Versions
Zyxel
Xgs4600 32f
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xgs4600 52f Firmware
Before 4.70\(abik.4\)c0
Running on/withPlatform Versions
Zyxel
Xgs4600 52f
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xmg1930 30 Firmware
Before 4.80\(acar.0\)
Running on/withPlatform Versions
Zyxel
Xmg1930 30
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xmg1930 30hp Firmware
Before 4.80\(acas.0\)
Running on/withPlatform Versions
Zyxel
Xmg1930 30hp
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Xs3800 28 Firmware
Up to 4.80\(abml.1\)c0
Running on/withPlatform Versions
Zyxel
Xs3800 28
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mgs3500 24s Firmware
Before 4.10\(abbr.2\)c0
Running on/withPlatform Versions
Zyxel
Mgs3500 24s
All versions
Configuration Q
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Zyxel
Mgs3520 28 Firmware
Before 4.10\(aatn.5\)c0
Mgs3520 28 Firmware
Version 4.10(abqm.1)c0
Running on/withPlatform Versions
Zyxel
Mgs3520 28
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mgs3520 28f Firmware
Before 4.10\(aatm.4\)c0
Running on/withPlatform Versions
Zyxel
Mgs3520 28f
All versions
Configuration S
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Zyxel
Mgs3530 28 Firmware
Before 4.10\(acem.2\)c0
Mgs3530 28 Firmware
Version 4.10(acfj.0)c0
Running on/withPlatform Versions
Zyxel
Mgs3530 28
All versions

Related CWEs

CWE-754
Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References (2)

Source: security@zyxel.com.tw
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.