ГлавнаяУязвимости → CVE-2025-7673
9.8критическая

CVE-2025-7673

Описание

A buffer overflow vulnerability in the URL parser of the zhttpd web server in Zyxel VMG8825-T50K firmware versions prior to V5.50(ABOM.5)C0 could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and potentially execute arbitrary code by sending a specially crafted HTTP request.

Затрагиваемое ПО
Zyxel Emg3525-t50b firmwareZyxel Emg3525-t50bZyxel Emg5523-t50b firmwareZyxel Emg5523-t50bZyxel Emg5723-t50k firmwareZyxel Emg5723-t50kZyxel Emg6726-b10a firmwareZyxel Emg6726-b10aZyxel Ex3510-b0 firmwareZyxel Ex3510-b0Zyxel Ex5510-b0 firmwareZyxel Ex5510-b0Zyxel Vmg1312-t20b firmwareZyxel Vmg1312-t20bZyxel Vmg3625-t50b firmwareZyxel Vmg3625-t50bZyxel Vmg3925-b10b firmwareZyxel Vmg3925-b10bZyxel Vmg3925-b10c firmwareZyxel Vmg3925-b10cZyxel Vmg3927-b50a firmwareZyxel Vmg3927-b50aZyxel Vmg3927-b60a firmwareZyxel Vmg3927-b60aZyxel Vmg3927-b50b firmware
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.zyxel.com/service-provider/global/en/zyxel-security-advisory-remote-code-execution-and-denial-service-vulnerabilities-cpe