Zyxel has released patches for GS1900 series switches affected by an improper privilege management vulnerability. Users are advised to install them for optimal protection.
What is the vulnerability?
A vulnerability in the Zyxel GS1900 series switches could allow a local authenticated user with the read-only access to modify system settings on a vulnerable device.
What versions are vulnerable—and what should you do?
After a thorough investigation, we’ve identified the vulnerable switches that are within their vulnerability support period and released patches to address the vulnerability, as shown in the table below.
|Affected model||Affected version||Patch availability|
Got a question?
Please contact your local service rep or visit Zyxel’s Community for further information or assistance.
Thanks to Alexey Morozkov for reporting the issue to us.
2023-11-7: Initial release.