VYPR
Unrated severityNVD Advisory· Published Feb 20, 2024· Updated Aug 2, 2024

CVE-2023-6397

CVE-2023-6397

Description

A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 through 5.37 Patch 1 could allow a LAN-based attacker to cause denial-of-service (DoS) conditions by downloading a crafted RAR compressed file onto a LAN-side host if the firewall has the “Anti-Malware” feature enabled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Zyxel/ATP seriesllm-fuzzy2 versions
    4.32 through 5.37 Patch 1+ 1 more
    • (no CPE)range: 4.32 through 5.37 Patch 1
    • (no CPE)range: version 4.32 through 5.37 Patch 1
  • Zyxel/USG FLEX seriesllm-fuzzy2 versions
    4.50 through 5.37 Patch 1+ 1 more
    • (no CPE)range: 4.50 through 5.37 Patch 1
    • (no CPE)range: version 4.50 through 5.37 Patch 1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.