Zyxel · Zyxel Gs1900-48 · CVE-2024-8882
Name of the Vulnerable Software and Affected Versions:
Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier
Description:
A buffer overflow vulnerability in the CGI program could allow an authenticated, LAN-based attacker with administrator privileges to cause denial of service (DoS) conditions via a crafted URL. The vulnerability is related to a buffer overflow in the memory, which can be exploited by a remote attacker to cause a denial of service.
Recommendations:
For Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier, update to a version later than V2.80(AAHN.1)C0 to resolve the issue. As a temporary workaround, consider restricting access to the CGI program to minimize the risk of exploitation.