Pierre Hauweele

**Name of the Vulnerable Software and Affected Versions** Zyxel GS1200-5v3 versions prior to 1.00(ACPS.2)C0 Zyxel GS1200-8v3 versions prior to 1.00(ACPT.2)C0 Zyxel GS1200-5HPv3 versions prior to 1.00(ACPU.2)C0 Zyxel GS1200-8HPv3 versions prior to 1.00(ACPV.2)C0 Zyxel GS1200-10v3 versions prior to 1.00(ACPW.2)C0 **Description** A missing authorization issue allows an unauthenticated attacker on the local area network (LAN) to read the system configuration from a log file by sending a specially crafted HTTP request. **Recommendations** Update GS1200-5v3 to version 1.00(ACPS.2)C0 or later. Update GS1200-8v3 to version 1.00(ACPT.2)C0 or later. Update GS1200-5HPv3 to version 1.00(ACPU.2)C0 or later. Update GS1200-8HPv3 to version 1.00(ACPV.2)C0 or later. Update GS1200-10v3 to version 1.00(ACPW.2)C0 or later.