CVE-2024-0816

Name: CVE-2024-0816
Creator: NVD / NIST
Published: 2024-05-21T02:15:08.743+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.5/10EPSS 0.14%

Last modified Jun 17, 2026

CVE-2024-0816 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. The buffer overflow vulnerability in the DX3300-T1 firmware version V5.50(ABVY.4)C0 could allow an authenticated local attacker to cause denial of service (DoS) conditions by executing the CLI command with crafted strings on an affected device.. EPSS estimates a 0.14% chance of exploitation in the next 30 days.

Description

The buffer overflow vulnerability in the DX3300-T1 firmware version V5.50(ABVY.4)C0 could allow an authenticated local attacker to cause denial of service (DoS) conditions by executing the CLI command with crafted strings on an affected device.

Metrics

CVSS 3.1

5.5/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

0.14%

4.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-120

Affected Software

Vendor	Product	Versions
Zyxel	Lte3202-M437 Firmware	1.00\(abwf.3\)c0
Zyxel	Lte3301-Plus Firmware	1.00\(abqu.5\)c0
Zyxel	Lte5388-M804 Firmware	1.00\(absq.4\)c0
Zyxel	Lte5398-M904 Firmware	1.00\(abq.4\)c0
Zyxel	Lte7240-M403 Firmware	2.00\(abmg.7\)c0
Zyxel	Lte7480-M804 Firmware	1.00\(abra.8\)c0
Zyxel	Lte7490-M904 Firmware	1.00\(abqy.7\)c0
Zyxel	Nr5103 Firmware	4.19\(abyc.5\)c0
Zyxel	Nr5103e Firmware	1.00\(acdj.1\)b3
Zyxel	Nr5103ev2 Firmware	1.00\(aciq.0\)c0
Zyxel	Nr5307 Firmware	1.00\(acjt.0\)b4
Zyxel	Nr7101 Firmware	1.00\(abu.9\)c0
Zyxel	Nr7102 Firmware	1.00\(abyd.2\)c0
Zyxel	Nr7103 Firmware	1.00\(accz.2\)c0
Zyxel	Nr7302 Firmware	1.00\(acha.2\)c0
Zyxel	Nr7303 Firmware	1.00\(acei.0\)c0
Zyxel	Nr7501 Firmware	1.00\(aceh.0\)c0
Zyxel	Nebula Fwa505 Firmware	1.18\(acko.1\)c0
Zyxel	Nebula Fwa510 Firmware	1.18\(acgd.1\)c0
Zyxel	Nebula Fwa710 Firmware	1.17\(acgc.0\)c0
Zyxel	Nebula Lte3301-Plus Firmware	1.17\(acca.0\)c0
Zyxel	Nebula Lte7461-M602 Firmware	1.15\(ace.3\)c0
Zyxel	Nebula Nr5101 Firmware	1.16\(accg.0\)c0
Zyxel	Nebula Nr7101 Firmware	1.16\(accc.0\)c0
Zyxel	Dx3300-T1 Firmware	5.50\(aby.4\)c0
Zyxel	Dx3301-T0 Firmware	5.50\(aby.4\)c0
Zyxel	Dx4510 Firmware	5.17\(abyl.6\)c0
Zyxel	Dx5401-B0 Firmware	5.17\(abyo.5\)c0
Zyxel	Dx5401-B1 Firmware	5.17\(abyo.5\)c0
Zyxel	Emg3525-T50b Firmware	5.50\(abpm.8\)c0
Zyxel	Emg5523-T50b Firmware	5.50\(abpm.8\)c0
Zyxel	Emg5723-T50k Firmware	5.50\(abom.8.2\)c0
Zyxel	Ex3300-T1 Firmware	5.50\(aby.4\)c0
Zyxel	Ex3301-T0 Firmware	5.50\(aby.4\)c0
Zyxel	Ex3320-T0 Firmware	5.71\(yak.2\)d0
Zyxel	Ex3320-T1 Firmware	5.71\(yap.0\)c0
Zyxel	Ex3500-T0 Firmware	5.44\(achr.0\)c0
Zyxel	Ex3501-T0 Firmware	5.44\(achr.0\)c0
Zyxel	Ex3510 Firmware	5.17\(abup.11\)c0
Zyxel	Ex5401-B0 Firmware	5.17\(abyo.5\)c0
Zyxel	Ex5401-B1 Firmware	5.17\(abyo.5\)c0
Zyxel	Ex5501-B0 Firmware	5.17\(abry.4\)c0
Zyxel	Ex5510 Firmware	5.17\(abqx.9\)c0
Zyxel	Ex5512-T0 Firmware	5.70\(aceg.2\)c0
Zyxel	Ex5600-T1 Firmware	5.70\(acdz.2\)c0
Zyxel	Ex5601-T0 Firmware	5.70\(acdz.2\)c0
Zyxel	Ex5601-T1 Firmware	5.70\(acdz.2\)c0
Zyxel	Ex7710-B0 Firmware	5.18\(acak.0\)c0
Zyxel	Vmg3625-T50b Firmware	5.50\(abpm.8\)c0
Zyxel	Vmg3927-T50k Firmware	5.50\(abom.8.2\)c0

Showing 50 of 65 affected configurations. See NVD for the full list.

References

Timeline

Published: May 21, 2024
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2024-0816?

How severe is CVE-2024-0816?

CVE-2024-0816 has a CVSS score of 5.5/10 (MEDIUM severity). The EPSS model estimates a 0.14% probability of exploitation in the next 30 days.

How do I fix CVE-2024-0816?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2024-0816?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST