CVE-2022-45854

CVSS V2 None CVSS V3 None
Description
An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0)C0, which could allow a LAN attacker to cause a temporary denial-of-service (DoS) by sending crafted VLAN frames if the MAC address of the vulnerable AP were intercepted by the attacker.
Overview
  • CVE ID
  • CVE-2022-45854
  • Assigner
  • security@zyxel.com.tw
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-02-07T02:15:08
  • Last Modified Date
  • 2023-02-14T23:47:09
Weakness Enumerations
CWE URL
CWE-754 http://cwe.mitre.org/data/definitions/754.html
CWE-754 http://cwe.mitre.org/data/definitions/754.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:zyxel:nwa110ax_firmware:*:*:*:*:*:*:*:* 1 OR 6.45\(abtg.0\)c0
cpe:2.3:h:zyxel:nwa110ax:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:zyxel:nwa210ax_firmware:*:*:*:*:*:*:*:* 1 OR 6.45\(abtd.0\)c0
cpe:2.3:h:zyxel:nwa210ax:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:zyxel:wax510d_firmware:*:*:*:*:*:*:*:* 1 OR 6.45\(abtf.0\)c0
cpe:2.3:h:zyxel:wax510d:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:zyxel:wax610d_firmware:*:*:*:*:*:*:*:* 1 OR 6.45\(abte.0\)c0
cpe:2.3:h:zyxel:wax610d:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:zyxel:wax630s_firmware:*:*:*:*:*:*:*:* 1 OR 6.45\(abzd.0\)c0
cpe:2.3:h:zyxel:wax630s:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:zyxel:wax650s_firmware:*:*:*:*:*:*:*:* 1 OR 6.45\(abrm.0\)c0
cpe:2.3:h:zyxel:wax650s:-:*:*:*:*:*:*:* 0 OR
References
Reference URL Reference Tags
https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-dos-vulnerability-of-aps Patch Vendor Advisory
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2022-45854
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45854
History
Created Old Value New Value Data Type Notes
2023-04-17 07:19:25 Added to TrackCVE
2023-04-17 07:19:28 Weakness Enumeration new