Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zyxel gs1900-24 firmware - vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-15799
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. User accounts created through the web interface of the device, when given non-admin level privileges, have the same level of privileged access as administrators when connecting to the device via SSH (w...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
2 Github repositories
9.1
CVSSv3
CVE-2019-15803
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. Through an undocumented sequence of keypresses, undocumented functionality is triggered. A diagnostics shell is triggered via CTRL-ALT-t, which prompts for the password returned by fds_sys_passDebugPas...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
9.8
CVSSv3
CVE-2019-15800
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. Due to lack of input validation in the cmd_sys_traceroute_exec(), cmd_sys_arp_clear(), and cmd_sys_ping_exec() functions in the libclicmd.so library contained in the firmware, an attacker could leverag...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
7.5
CVSSv3
CVE-2019-15801
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. The firmware image contains encrypted passwords that are used to authenticate users wishing to access a diagnostics or password-recovery menu. Using the hardcoded cryptographic key found elsewhere in t...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
2 Github repositories
5.9
CVSSv3
CVE-2019-15802
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. The firmware hashes and encrypts passwords using a hardcoded cryptographic key in sal_util_str_encrypt() in libsal.so.0.0. The parameters (salt, IV, and key data) are used to encrypt and decrypt all pa...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
2 Github repositories
7.5
CVSSv3
CVE-2019-15804
An issue exists on Zyxel GS1900 devices with firmware prior to 2.50(AAHH.0)C0. By sending a signal to the CLI process, undocumented functionality is triggered. Specifically, a menu can be triggered by sending the SIGQUIT signal to the CLI application (e.g., through CTRL+\ via SSH...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
5.9
CVSSv3
CVE-2022-34746
An insufficient entropy vulnerability caused by the improper use of randomness sources with low entropy for RSA key pair generation was found in Zyxel GS1900 series firmware versions prior to V2.70. This vulnerability could allow an unauthenticated malicious user to retrieve a pr...
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24ep Firmware
Zyxel Gs1900-24hpv2 Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hpv2 Firmware
5.5
CVSSv3
CVE-2023-35140
The improper privilege management vulnerability in the Zyxel GS1900-24EP switch firmware version V2.70(ABTO.5) could allow an authenticated local user with read-only access to modify system settings on a vulnerable device.
Zyxel Gs1900-48hpv2 Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-24hpv2 Firmware
Zyxel Gs1900-24ep Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-8 Firmware
4.3
CVSSv3
CVE-2021-35030
A vulnerability was found in the CGI program in Zyxel GS1900-8 firmware version V2.60, that did not properly sterilize packet contents and could allow an authenticated, local user to perform a cross-site scripting (XSS) attack via a crafted LLDP packet.
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24ep Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-24hpv2 Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
Zyxel Gs1900-48hpv2 Firmware
7.8
CVSSv3
CVE-2021-35032
A vulnerability in the 'libsal.so' of the Zyxel GS1900 series firmware version 2.60 could allow an authenticated local user to execute arbitrary OS commands via a crafted function call.
Zyxel Gs1900-8 Firmware
Zyxel Gs1900-8hp Firmware
Zyxel Gs1900-10hp Firmware
Zyxel Gs1900-16 Firmware
Zyxel Gs1900-24e Firmware
Zyxel Gs1900-24ep Firmware
Zyxel Gs1900-24 Firmware
Zyxel Gs1900-24hp Firmware
Zyxel Gs1900-24hpv2 Firmware
Zyxel Gs1900-48 Firmware
Zyxel Gs1900-48hp Firmware
Zyxel Gs1900-48hpv2 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »