CVE-2023-6397 : A null pointer dereference vulnerability in Zyxel ATP series firmware versions f

A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 through 5.37 Patch 1 could allow a LAN-based attacker to cause denial-of-service (DoS) conditions by downloading a crafted RAR compressed file onto a LAN-side host if the firewall has the “Anti-Malware” feature enabled.

Published 2024-02-20 02:15:49

Updated 2025-01-21 18:47:30

Source Zyxel Corporation

View at NVD, CVE.org

Vulnerability category: Memory CorruptionDenial of service

Products affected by CVE-2023-6397

Zyxel » Atp200 Firmware
Versions from including (>=) 4.32 and before (<) 5.37
cpe:2.3:o:zyxel:atp200_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp200 » Version: N/A
Zyxel » Atp200 Firmware » Version: 5.37
cpe:2.3:o:zyxel:atp200_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp200 » Version: N/A
Zyxel » Atp200 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:atp200_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp200 » Version: N/A
Zyxel » Atp500 Firmware
Versions from including (>=) 4.32 and before (<) 5.37
cpe:2.3:o:zyxel:atp500_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp500 » Version: N/A
Zyxel » Atp500 Firmware » Version: 5.37
cpe:2.3:o:zyxel:atp500_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp500 » Version: N/A
Zyxel » Atp500 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:atp500_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp500 » Version: N/A
Zyxel » Atp800 Firmware
Versions from including (>=) 4.32 and before (<) 5.37
cpe:2.3:o:zyxel:atp800_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp800 » Version: N/A
Zyxel » Atp800 Firmware » Version: 5.37
cpe:2.3:o:zyxel:atp800_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp800 » Version: N/A
Zyxel » Atp800 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:atp800_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp800 » Version: N/A
Zyxel » Atp100 Firmware
Versions from including (>=) 4.32 and before (<) 5.37
cpe:2.3:o:zyxel:atp100_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp100 » Version: N/A
Zyxel » Atp100 Firmware » Version: 5.37
cpe:2.3:o:zyxel:atp100_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp100 » Version: N/A
Zyxel » Atp100 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:atp100_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp100 » Version: N/A
Zyxel » Usg Flex 100 Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_100_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100 » Version: N/A
Zyxel » Usg Flex 100 Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_100_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100 » Version: N/A
Zyxel » Usg Flex 100 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_100_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100 » Version: N/A
Zyxel » Usg Flex 200 Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_200_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200 » Version: N/A
Zyxel » Usg Flex 200 Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_200_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200 » Version: N/A
Zyxel » Usg Flex 200 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_200_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200 » Version: N/A
Zyxel » Usg Flex 500 Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_500_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 500 » Version: N/A
Zyxel » Usg Flex 500 Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_500_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 500 » Version: N/A
Zyxel » Usg Flex 500 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_500_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 500 » Version: N/A
Zyxel » Usg Flex 100w Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_100w_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100w » Version: N/A
Zyxel » Usg Flex 100w Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_100w_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100w » Version: N/A
Zyxel » Usg Flex 100w Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_100w_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100w » Version: N/A
Zyxel » Usg Flex 700 Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_700_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 700 » Version: N/A
Zyxel » Usg Flex 700 Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_700_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 700 » Version: N/A
Zyxel » Usg Flex 700 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_700_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 700 » Version: N/A
Zyxel » Atp100w Firmware
Versions from including (>=) 4.32 and before (<) 5.37
cpe:2.3:o:zyxel:atp100w_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp100w » Version: N/A
Zyxel » Atp100w Firmware » Version: 5.37
cpe:2.3:o:zyxel:atp100w_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp100w » Version: N/A
Zyxel » Atp100w Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:atp100w_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp100w » Version: N/A
Zyxel » Atp700 Firmware
Versions from including (>=) 4.32 and before (<) 5.37
cpe:2.3:o:zyxel:atp700_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp700 » Version: N/A
Zyxel » Atp700 Firmware » Version: 5.37
cpe:2.3:o:zyxel:atp700_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp700 » Version: N/A
Zyxel » Atp700 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:atp700_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Atp700 » Version: N/A
Zyxel » Usg Flex 50w Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_50w_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 50w » Version: N/A
Zyxel » Usg Flex 50w Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_50w_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 50w » Version: N/A
Zyxel » Usg Flex 50w Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_50w_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 50w » Version: N/A
Zyxel » Usg Flex 50 Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_50_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 50 » Version: N/A
Zyxel » Usg Flex 50 Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_50_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 50 » Version: N/A
Zyxel » Usg Flex 50 Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_50_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 50 » Version: N/A
Zyxel » Usg Flex 100ax Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_100ax_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100ax » Version: N/A
Zyxel » Usg Flex 100ax Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_100ax_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100ax » Version: N/A
Zyxel » Usg Flex 100ax Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_100ax_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100ax » Version: N/A
Zyxel » Usg Flex 100h Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_100h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100h » Version: N/A
Zyxel » Usg Flex 100h Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_100h_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100h » Version: N/A
Zyxel » Usg Flex 100h Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_100h_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 100h » Version: N/A
Zyxel » Usg Flex 200h Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_200h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200h » Version: N/A
Zyxel » Usg Flex 200h Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_200h_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200h » Version: N/A
Zyxel » Usg Flex 200h Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_200h_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200h » Version: N/A
Zyxel » Usg Flex 200hp Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_200hp_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200hp » Version: N/A
Zyxel » Usg Flex 200hp Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_200hp_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200hp » Version: N/A
Zyxel » Usg Flex 200hp Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_200hp_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 200hp » Version: N/A
Zyxel » Usg Flex 500h Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_500h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 500h » Version: N/A
Zyxel » Usg Flex 500h Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_500h_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 500h » Version: N/A
Zyxel » Usg Flex 500h Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_500h_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 500h » Version: N/A
Zyxel » Usg Flex 700h Firmware
Versions from including (>=) 4.50 and before (<) 5.37
cpe:2.3:o:zyxel:usg_flex_700h_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 700h » Version: N/A
Zyxel » Usg Flex 700h Firmware » Version: 5.37
cpe:2.3:o:zyxel:usg_flex_700h_firmware:5.37:-:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 700h » Version: N/A
Zyxel » Usg Flex 700h Firmware » Version: 5.37 Update Patch1
cpe:2.3:o:zyxel:usg_flex_700h_firmware:5.37:patch1:*:*:*:*:*:*
Matching versions
When used together with: Zyxel » Usg Flex 700h » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2023-6397

EPSS FAQ

0.13%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 34 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-6397

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.3	MEDIUM	CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H	1.6	3.6	NIST	2025-01-21
Attack Vector: Adjacent Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High
6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	2.8	3.6	Zyxel Corporation	2024-02-20
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2023-6397

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

Assigned by: security@zyxel.com.tw (Secondary)

References for CVE-2023-6397

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps-02-20-2024

Zyxel security advisory for multiple vulnerabilities in firewalls and APs | Zyxel Networks
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2023-6397

Products affected by CVE-2023-6397

Exploit prediction scoring system (EPSS) score for CVE-2023-6397

CVSS scores for CVE-2023-6397

CWE ids for CVE-2023-6397

References for CVE-2023-6397