Primary

Context

Zyxel VMG4005-B50B UPnP Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Patched

A buffer overflow vulnerability has been identified in the UPnP DeletePortMapping() command of the Zyxel VMG4005-B50B router. This vulnerability affects firmware versions through 5.13(ABRL.5.4)C0. An adjacent attacker could exploit this vulnerability to cause a temporary denial-of-service condition, disrupting the UPnP functionality of the device. The issue can only be exploited within a LAN or WLAN environment.

Impact

Exploitation of this vulnerability causes a temporary denial-of-service condition, disrupting the UPnP functionality of the affected device.

Remediation

Users can upgrade to Zyxel firmware version 5.13(ABRL.5.5)C0 to address this vulnerability. For devices acquired through an ISP, contact the ISP's support team. For other users, reach out to the local Zyxel support team or visit Zyxel's Community for assistance.

Added: Jun 2, 2026, 3:18 AM

Updated: Jun 2, 2026, 3:18 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.9

remediation

7.7

relevance

9.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

0.6

exploitability

4.9

remediation

7.7

relevance

9.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zyxel VMG4005-B50B UPnP Buffer Overflow Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Zyxel NR7101

Zyxel Nebula LTE3301-PLUS

Zyxel Nebula NR7101

Zyxel VMG4005-B50B

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating