Cyber Resilience

CVE-2025-11845

Medium

Published: 24 February 2026

Published
24 February 2026
Modified
25 February 2026
KEV Added
Patch
CVSS Score v3.1 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0014 33.7th percentile
Risk Priority 10 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-11845 is a medium-severity NULL Pointer Dereference (CWE-476) vulnerability in Zyxel Px3321-T1 Firmware. Its CVSS base score is 4.9 (Medium).

Operationally, ranked at the 33.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A null pointer dereference vulnerability in the certificate downloader CGI program of the Zyxel VMG3625-T50B firmware versions through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS)…

more

condition by sending a crafted HTTP request.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

zyxel
lte3301-plus firmware
≤ 1.00\(abqu.9\)c0
zyxel
nebula fwa505 firmware
≤ 1.60\(acko.2\)v0
zyxel
nebula fwa510 firmware
≤ 1.60\(acgd.0\)c0
zyxel
nebula fwa515 firmware
≤ 1.60\(acpz.0\)v0
zyxel
nebula fwa710 firmware
≤ 1.60\(acgc.1\)v0
zyxel
ee5301-00 firmware
≤ 5.63\(acld.2.1\)c0
zyxel
ee3301-00 firmware
≤ 5.63\(acmu.2.1\)c0
zyxel
dx5401-b1 firmware
≤ 5.17\(abyo.7.1\)c0
zyxel
dx4510-b1 firmware
≤ 5.17\(abyl.10.1\)c0
zyxel
dx4510-b0 firmware
≤ 5.17\(abyl.10.1\)c0
+44 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References