CVE-2023-30350

Name of the Vulnerable Software and Affected Versions FS S3900-24T4S (affected versions not specified)

Description The issue is related to insufficient access control in the software of FS S3900-24T4S switches. It allows a remote attacker to escalate their privileges and reset the admin password. This can be achieved by an authenticated attacker with guest access.

Recommendations For FS S3900-24T4S devices, restrict access to the device to minimize the risk of exploitation. As a temporary workaround, consider limiting guest access privileges until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.