Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
CVE-2026-3870: Zyxel VMG4005-B50B UPnP Buffer Overflow: Temporary Service Disruption
CVE-2026-3870
Summary
A flaw in the Zyxel VMG4005-B50B router's UPnP feature allows an attacker on the same network to temporarily shut down the router's UPnP service. This could cause issues with devices relying on UPnP for connectivity. Update the router's firmware to the latest version to fix this issue.
Original title
A buffer overflow vulnerability in the UPnP AddPortMapping() command in Zyxel VMG4005-B50B firmware versions through 5.13(ABRL.5.4)C0 could allow an adjacent attacker to trigger a temporary denial-...
Original description
A buffer overflow vulnerability in the UPnP AddPortMapping() command in Zyxel VMG4005-B50B firmware versions through 5.13(ABRL.5.4)C0 could allow an adjacent attacker to trigger a temporary denial-of-service (DoS) condition affecting the UPnP function of the affected device.
nvd CVSS3.1
6.5
Vulnerability type
CWE-120
Classic Buffer Overflow
Published: 2 Jun 2026 · Updated: 2 Jun 2026 · First seen: 2 Jun 2026