CVE-2024-8882

Name of the Vulnerable Software and Affected Versions: Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier

Description: A buffer overflow vulnerability in the CGI program could allow an authenticated, LAN-based attacker with administrator privileges to cause denial of service (DoS) conditions via a crafted URL. The vulnerability is related to a buffer overflow in the memory, which can be exploited by a remote attacker to cause a denial of service.

Recommendations: For Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier, update to a version later than V2.80(AAHN.1)C0 to resolve the issue. As a temporary workaround, consider restricting access to the CGI program to minimize the risk of exploitation.