CVE-2025-11848

Name of the Vulnerable Software and Affected Versions Zyxel VMG3625-T50B versions prior to 5.50(ABPM.9.6)C0 Zyxel WX3100-T0 versions prior to 5.50(ABVL.4.8)C0

Description A flaw exists in the Wake-on-LAN CGI program that could allow an attacker with administrator privileges to cause a denial-of-service (DoS) condition. This is triggered by sending a specially crafted HTTP request. The issue involves a null pointer dereference.

Recommendations Update Zyxel VMG3625-T50B to version 5.50(ABPM.9.6)C0 or later. Update Zyxel WX3100-T0 to version 5.50(ABVL.4.8)C0 or later.