CVE-2019-15804

Name of the Vulnerable Software and Affected Versions Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0

Description An issue exists due to insufficient input validation in the Password Recovery component of Zyxel GS1900 series routers. This issue can be triggered by sending a specific signal to the CLI process, such as the SIGQUIT signal, which can be sent through CTRL+ via SSH, allowing access to an undocumented menu. The menu contains "Password recovery for specific user" options, although access control checks are in place to prohibit accessing this menu. The issue may also be accessible using a serial console. Exploitation of this issue could allow a remote attacker to impact the integrity of protected information.

Recommendations For Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0, update the firmware to version 2.50(AAHH.0)C0 or later to resolve the issue. As a temporary workaround, consider restricting access to the CLI application and the Password Recovery menu to minimize the risk of exploitation. Avoid using the SIGQUIT signal to the CLI application until the issue is resolved.