PT-2026-21622 · Zyxel · Zyxel Wx3100-T0+1
Published
2026-02-24
·
Updated
2026-02-24
·
CVE-2025-11846
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)
Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0
Description
A flaw exists in the account settings CGI program that could allow an authenticated attacker with administrator privileges to cause a denial-of-service (DoS) condition. This is achieved by sending a specially crafted HTTP request.
Recommendations
Update Zyxel VMG3625-T50B firmware to a version later than 5.50(ABPM.9.6).
Update Zyxel WX3100-T0 firmware to a version later than 5.50(ABVL.4.8)C0.
Fix
DoS
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Zyxel Vmg3625-T50B
Zyxel Wx3100-T0