Vulnerabilities > CVE-2016-10227 - Resource Management Errors vulnerability in Zyxel Nwa3560-N Firmware and Usg50 Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

zyxel

CWE-399

NVD

Published: 2017-02-21

Updated: 2017-03-29

Summary

Zyxel USG50 Security Appliance and NWA3560-N Access Point allow remote attackers to cause a denial of service (CPU consumption) via a flood of ICMPv4 Port Unreachable packets.

Vulnerable Configurations

Part	Description	Count
OS	Zyxel Zyxel Usg50 Firmware - Zyxel Nwa3560 N Firmware -	2
Hardware	Zyxel Zyxel Usg50 - Zyxel Nwa3560 N -	2

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

https://cxsecurity.com/issue/WLB-2017020177
http://www.zyxel.com/support/announcement_blacknurse_attack.shtml
http://www.securityfocus.com/bid/97105