CVE-2019-15801

Name of the Vulnerable Software and Affected Versions Zyxel GS1900 devices with firmware before 2.50(AAHH.0)C0

Description The issue is related to insufficient protection of registration data in the functions fds sys passDebugPasswd ret() and fds sys passRecoveryPasswd ret() of the libfds.so.0.0 library in Zyxel GS1900 series router firmware. This can allow a remote attacker to elevate their privileges. The firmware image contains encrypted passwords used for authentication to access diagnostics or password-recovery menus, which can be decrypted using a hardcoded cryptographic key found in the firmware.

Recommendations For Zyxel GS1900 devices with firmware before 2.50(AAHH.0)C0, update the firmware to version 2.50(AAHH.0)C0 or later to resolve the issue. As a temporary workaround, consider restricting access to the diagnostics and password-recovery menus to minimize the risk of exploitation.