CVE-2023-28768

Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30 firmware version V4.80(ACAR.1), and XS1930-10 firmware version V4.80(ABQE.1) could allow an unauthenticated LAN-based attacker to cause denial-of-service (DoS) conditions by sending crafted frames to an affected switch.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zyxel:xgs2220-30_firmware:4.80\(abxn.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-30:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:zyxel:xgs2220-30f_firmware:4.80\(abye.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-30f:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:zyxel:xgs2220-30hp_firmware:4.80\(abxo.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-30hp:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:zyxel:xgs2220-54_firmware:4.80\(abxp.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-54:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:zyxel:xgs2220-54fp_firmware:4.80\(acce.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-54fp:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:zyxel:xgs2220-54hp_firmware:4.80\(abxq.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-54hp:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:zyxel:xmg1930-30_firmware:4.80\(acar.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xmg1930-30:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:zyxel:xmg1930-30hp_firmware:4.80\(acas.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xmg1930-30hp:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:zyxel:xs1930-10_firmware:4.80\(abqe.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xs1930-10:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:zyxel:xs1930-12f_firmware:4.80\(abzv.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xs1930-12f:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:zyxel:xs1930-12hp_firmware:4.80\(abqf.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xs1930-12hp:-:*:*:*:*:*:*:*

History

21 Aug 2023, 16:07

Type Values Removed Values Added
CPE cpe:2.3:h:zyxel:xgs2220-30f:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-30:-:*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xs1930-12f_firmware:4.80\(abzv.1\):*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xgs2220-54hp_firmware:4.80\(abxq.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xs1930-12hp:-:*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xgs2220-54fp_firmware:4.80\(acce.1\):*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xgs2220-54_firmware:4.80\(abxp.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-54:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-54fp:-:*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xgs2220-30f_firmware:4.80\(abye.1\):*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xmg1930-30hp_firmware:4.80\(acas.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xmg1930-30hp:-:*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xgs2220-30hp_firmware:4.80\(abxo.1\):*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xs1930-12hp_firmware:4.80\(abqf.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xs1930-12f:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xmg1930-30:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-30hp:-:*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xs1930-10_firmware:4.80\(abqe.1\):*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xmg1930-30_firmware:4.80\(acar.1\):*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xs1930-10:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:xgs2220-54hp:-:*:*:*:*:*:*:*
cpe:2.3:o:zyxel:xgs2220-30_firmware:4.80\(abxn.1\):*:*:*:*:*:*:*
References (MISC) https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-dos-vulnerability-of-xgs2220-xmg1930-and-xs1930-series-switches - (MISC) https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-dos-vulnerability-of-xgs2220-xmg1930-and-xs1930-series-switches - Patch, Vendor Advisory
First Time Zyxel xmg1930-30hp
Zyxel xs1930-12f
Zyxel xs1930-12hp
Zyxel xgs2220-30f Firmware
Zyxel xgs2220-30hp Firmware
Zyxel xgs2220-54fp Firmware
Zyxel
Zyxel xgs2220-54fp
Zyxel xmg1930-30hp Firmware
Zyxel xgs2220-30hp
Zyxel xgs2220-54hp
Zyxel xmg1930-30
Zyxel xs1930-10 Firmware
Zyxel xgs2220-54hp Firmware
Zyxel xs1930-12hp Firmware
Zyxel xmg1930-30 Firmware
Zyxel xgs2220-54
Zyxel xgs2220-30f
Zyxel xgs2220-54 Firmware
Zyxel xgs2220-30 Firmware
Zyxel xgs2220-30
Zyxel xs1930-10
Zyxel xs1930-12f Firmware
CWE CWE-755

14 Aug 2023, 17:27

Type Values Removed Values Added
New CVE

Information

Published : 2023-08-14 17:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-28768

Mitre link : CVE-2023-28768

CVE.ORG link : CVE-2023-28768


JSON object : View

Products Affected

zyxel

  • xgs2220-54hp
  • xgs2220-30_firmware
  • xgs2220-54hp_firmware
  • xgs2220-30f
  • xgs2220-54fp_firmware
  • xs1930-12f_firmware
  • xmg1930-30_firmware
  • xgs2220-30f_firmware
  • xgs2220-30hp
  • xmg1930-30hp_firmware
  • xs1930-10_firmware
  • xmg1930-30
  • xs1930-12f
  • xgs2220-30hp_firmware
  • xs1930-12hp_firmware
  • xmg1930-30hp
  • xgs2220-30
  • xs1930-12hp
  • xgs2220-54
  • xgs2220-54_firmware
  • xgs2220-54fp
  • xs1930-10
CWE
CWE-755

Improper Handling of Exceptional Conditions