CVE-2025-7673
CRITICAL EPSS 41.6%
Published Jul 16, 202511mo ago · Modified Jun 17, 20262w ago
9.8 CVSS 3.1
Published Jul 16, 2025 11mo ago
Last Modified Jun 17, 2026 2w ago
Description
A buffer overflow vulnerability in the URL parser of the zhttpd web server in Zyxel VMG8825-T50K firmware versions prior to V5.50(ABOM.5)C0 could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and potentially execute arbitrary code by sending a specially crafted HTTP request.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
41.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-120
Affected Products 52
| Vendor | Product | Version | Range |
|---|---|---|---|
| zyxel | emg3525-t50b_firmware | * | <5.50\(abpm.4\)c0 |
| zyxel | emg3525-t50b | * | any |
| zyxel | emg3525-t50b_firmware | * | <5.50\(absl.0\)b8 |
| zyxel | emg3525-t50b | * | any |
| zyxel | emg5523-t50b_firmware | * | <5.50\(abpm.4\)c0 |
| zyxel | emg5523-t50b | * | any |
| zyxel | emg5523-t50b_firmware | * | <5.50\(absl.0\)b8 |
| zyxel | emg5523-t50b | * | any |
| zyxel | emg5723-t50k_firmware | * | <5.50\(abom.5\)c0 |
| zyxel | emg5723-t50k | * | any |
| zyxel | emg6726-b10a_firmware | * | <5.13\(abnp.6\).c |
| zyxel | emg6726-b10a | * | any |
| zyxel | ex3510-b0_firmware | * | <5.17\(abup.3\)c0 |
| zyxel | ex3510-b0 | * | any |
| zyxel | ex5510-b0_firmware | * | <5.15\(abqx.3\)c0 |
| zyxel | ex5510-b0 | * | any |
| zyxel | vmg1312-t20b_firmware | * | <5.50\(absb.3\)c0 |
| zyxel | vmg1312-t20b | * | any |
| zyxel | vmg3625-t50b_firmware | * | <5.50\(abpm.4\)c0 |
| zyxel | vmg3625-t50b | * | any |
| zyxel | vmg3925-b10b_firmware | * | <5.13\(aavf.16\)c |
| zyxel | vmg3925-b10b | * | any |
| zyxel | vmg3925-b10c_firmware | * | <5.13\(aavf.16\)c |
| zyxel | vmg3925-b10c | * | any |
| zyxel | vmg3927-b50a_firmware | * | <5.15\(abmt.5\)c0 |
| zyxel | vmg3927-b50a | * | any |
| zyxel | vmg3927-b60a_firmware | * | <5.15\(abmt.5\)c0 |
| zyxel | vmg3927-b60a | * | any |
| zyxel | vmg3927-b50b_firmware | * | <5.13\(ably.6\)c0 |
| zyxel | vmg3927-b50b | * | any |
| zyxel | vmg3927-t50k_firmware | * | <5.50\(abom.5\)c0 |
| zyxel | vmg3927-t50k | * | any |
| zyxel | vmg4005-b50b_firmware | * | <5.13\(abrl.5\)c0 |
| zyxel | vmg4005-b50b | * | any |
| zyxel | vmg4927-b50a_firmware | * | <5.13\(ably.6\)c0 |
| zyxel | vmg4927-b50a | * | any |
| zyxel | vmg8623-t50b_firmware | * | <5.50\(abpm.4\)c0 |
| zyxel | vmg8623-t50b | * | any |
| zyxel | vmg8825-b50a_firmware | * | <5.15\(abmt.5\)c0 |
| zyxel | vmg8825-b50a | * | any |
| zyxel | vmg8825-b60a_firmware | * | <5.15\(abmt.5\)c0 |
| zyxel | vmg8825-b60a | * | any |
| zyxel | vmg8825-bx0b_firmware | * | <5.17\(abny.5\)c0 |
| zyxel | vmg8825-bx0b | * | any |
| zyxel | vmg8825-t50k_firmware | * | <5.50\(abom.5\)c0 |
| zyxel | vmg8825-t50k | * | any |
| zyxel | vmg8924-b10d_firmware | * | <5.13\(abgq.6\)c0 |
| zyxel | vmg8924-b10d | * | any |
| zyxel | xmg3927-b50a_firmware | * | <5.15\(abmt.5\)c0 |
| zyxel | xmg3927-b50a | * | any |
| zyxel | xmg8825-b50a_firmware | * | <5.17\(abmt.5\)c0 |
| zyxel | xmg8825-b50a | * | any |
References 1
- zyxel.com https://www.zyxel.com/service-provider/global/en/zyxel-security-advisory-remote-code-execution-and-denial-service-vulnerabilities-cpe
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.