How to Fix CVE-2023-33009 and CVE-2023-33010- Critical Buffer Overflow Vulnerabilities in Zyxel Products?

Security researchers from TRAPA Security and STAR Labs SG have disclosed two new critical buffer overflow vulnerabilities in Zyxel Firewall and VPN products. These vulnerabilities, tracked under the CVE IDs CVE-2023-33009 and CVE-2023-33010, are categorized as Critical in severity. They enable attackers to carry out Denial of Service and Remote Code Execution attacks on the affected Zyxel products. Given the severity of these flaws, it is crucial for users of Zyxel’s Firewall and VPN products to address these vulnerabilities promptly. In this post, we will provide a summary of the two buffer overflow vulnerabilities found in Zyxel products, list the affected products, and, most importantly, explain how to fix these two vulnerabilities: CVE-2023-33009 and CVE-2023-33010.

A Short Introduction About Zyxel and Its Products

Zyxel Communications Corp. is a company that specializes in manufacturing networking devices. Founded in 1989 in Taiwan, Zyxel has become a leading provider of complete broadband access solutions for service providers, as well as businesses and home users.

The company produces a wide range of products in the networking field. Here are some of the main categories of Zyxel products:

Summary of Buffer Overflow Vulnerabilities in Zyxel Products

Here are the vulnerabilities found in Zyxel products.

CVE-2023-33009:

This is a Buffer Overflow vulnerability lice in ID Processing Functionof Zyxel Firewalls. A specific group of firewall versions has been found to contain a buffer overflow vulnerability within the notification function. If left unpatched, this security flaw could enable unauthenticated attackers to exploit the vulnerability, leading to potential DoS conditions and even remote code execution on affected devices.

CVE-2023-33010:

This is a Buffer Overflow vulnerability lice in notification function of Zyxel Firewalls. Another vulnerability affecting certain firewall versions has been discovered in the ID processing function. Similar to the previous vulnerability, unauthenticated attackers can leverage this buffer overflow vulnerability to cause DoS conditions and potentially execute remote code on vulnerable devices.

Zyxel Products Affected By These Flaws:

As per the security advisory published by Zyxel, multiple products and versions are affected by these vulnerabilities.

How to Fix CVE-2023-33009 and CVE-2023-33010?

In a continuous effort to enhance cybersecurity, Zyxel has taken swift action to address multiple buffer overflow vulnerabilities affecting their firewalls. These vulnerabilities pose significant risks, including the potential for denial-of-service (DoS) attacks and remote code execution. To ensure the optimal protection of your network, it is imperative to promptly install the provided patches.

The table below provides an overview of the affected series, their corresponding affected versions, and the availability of patches to mitigate the vulnerabilities:

It is crucial for users with firewalls from the aforementioned affected series and versions to take immediate action. By installing the provided patches, you can fix the CVE-2023-33009 and CVE-2023-33010 vulnerabilities and strengthen the security of your network.