CVE-2024-1575

Name of the Vulnerable Software and Affected Versions Zyxel WBE660S versions 6.70(ACGG.3) and earlier

Description The issue is related to improper privilege management, which could allow an authenticated user to escalate privileges and download configuration files on a vulnerable device. This is due to deficiencies in access control.

Recommendations For versions 6.70(ACGG.3) and earlier, update to a version that addresses the improper privilege management issue to prevent privilege escalation and unauthorized configuration file downloads. As a temporary workaround, consider restricting access to configuration files and limiting user privileges until a patch is available.