Rewterz Threat Advisory – CVE-2023-27989 – Zyxel NR7101 Devices Vulnerability

Rewterz Threat Advisory – Multiple Mozilla Firefox Vulnerabilities

June 7, 2023

Rewterz Threat Alert – Qakbot aka Pinkslipbot or Qbot Malware Campaign – Active IOCs

June 7, 2023

Rewterz Threat Advisory – CVE-2023-27989 – Zyxel NR7101 Devices Vulnerability

Severity

Medium

Analysis Summary

CVE-2023-27989

Zyxel NR7101 devices are vulnerable to a denial of service, caused by a buffer overflow in the CGI program. By sending a specially crafted HTTP request, a remote authenticated attacker could exploit this vulnerability to cause a denial of service condition.

Impact

Denial of Service

Indicators Of Compromise

CVE

CVE-2023-27989

Affected Vendors

Zyxel

Affected Products

Zyxel LTE7480-M804 1.00(ABRA.6)C0
Zyxel LTE7490-M904 1.00(ABQY.5)C0
Zyxel NR7101 1.00(ABUV.7)C0
Zyxel Nebula NR7101 1.15(ACCC.3)C0

Remediation

Zyxel Web site

Rewterz Threat Advisory – Multiple Mozilla Firefox Vulnerabilities

Rewterz Threat Alert – Qakbot aka Pinkslipbot or Qbot Malware Campaign – Active IOCs

Rewterz Threat Advisory – CVE-2023-27989 – Zyxel NR7101 Devices Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan