CVE-2021-35030

Name of the Vulnerable Software and Affected Versions: Zyxel GS1900-8 firmware version V2.60

Description: A vulnerability was found in the CGI program that did not properly sterilize packet contents, allowing an authenticated, local user to perform a cross-site scripting (XSS) attack via a crafted LLDP packet.

Recommendations: For Zyxel GS1900-8 firmware version V2.60, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version. As a temporary workaround, consider restricting access to the CGI program to minimize the risk of exploitation.