CVE-2022-45854

MEDIUM

Zyxel NWA110AX Firmware < 6.50(ABTG.0)C0 - Denial of Service via Crafted VLAN Frames

Title source: llm

Description

An improper check for unusual conditions in Zyxel NWA110AX firmware verisons prior to 6.50(ABTG.0)C0, which could allow a LAN attacker to cause a temporary denial-of-service (DoS) by sending crafted VLAN frames if the MAC address of the vulnerable AP were intercepted by the attacker.

References (1)

Core 1

Core References

Patch, Vendor Advisory

https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-dos-vulnerability-of-aps

Scores

CVSS v3 4.3

EPSS 0.0024

EPSS Percentile 46.8%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-754

Status published

Products (6)

zyxel/nwa110ax_firmware < 6.45\(abtg.0\)c0

zyxel/nwa210ax_firmware < 6.45\(abtd.0\)c0

zyxel/wax510d_firmware < 6.45\(abtf.0\)c0

zyxel/wax610d_firmware < 6.45\(abte.0\)c0

zyxel/wax630s_firmware < 6.45\(abzd.0\)c0

zyxel/wax650s_firmware < 6.45\(abrm.0\)c0

Published Feb 07, 2023

Tracked Since Feb 18, 2026