A buffer overflow vulnerability in the “sdwan_iface_ipc” binary of Zyxel ATP series firmware versions 5.10 through 5.32, USG FLEX series firmware versions 5.00 through 5.32, USG FLEX 50(W) firmware versions 5.10 through 5.32, USG20(W)-VPN firmware versions 5.10 through 5.32, and VPN series firmware versions 5.00 through 5.35, which could allow a remote unauthenticated attacker to cause a core dump with a request error message on a vulnerable device by uploading a crafted configuration file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Zyxel

Published: 2023-04-24T00:00:00

Updated: 2024-08-02T10:20:31.383Z

Reserved: 2023-01-10T00:00:00

Link: CVE-2023-22917

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-04-24T17:15:09.833

Modified: 2023-05-04T13:28:13.717

Link: CVE-2023-22917

cve-icon Redhat

No data.