CVE-2023-28769

Name of the Vulnerable Software and Affected Versions ZyXEL DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0

Description The issue is related to a buffer overflow vulnerability in the libclinkc.so library of the zhttpd web server. This vulnerability could allow a remote unauthenticated attacker to execute some OS commands or cause denial-of-service (DoS) conditions on a vulnerable device.

Recommendations For ZyXEL DX5401-B0 firmware versions prior to V5.17(ABYO.1)C0, update to version V5.17(ABYO.1)C0 or later to resolve the issue. As a temporary workaround, consider restricting access to the zhttpd web server to minimize the risk of exploitation.