Cryptographic Vulnerability in Zyxel GS1900 Devices
CVE-2019-15801

7.5HIGH

Key Information:

Vendor: Zyxel
Status: Gs1900-8 Firmware
Vendor: CVE Published:; 14 November 2019

Summary

A security issue was found in Zyxel GS1900 devices running firmware versions earlier than 2.50(AAHH.0)C0. The firmware incorporates encrypted passwords for user authentication to access diagnostic and password recovery menus. However, through the use of a hardcoded cryptographic key embedded within the firmware, these passwords can be decrypted, leading to potential unauthorized access. This flaw is tied to the functions fds_sys_passDebugPasswd_ret() and fds_sys_passRecoveryPasswd_ret() found in libfds.so.0.0.

References

https://jasper.la/exploring-zyxel-gs1900-firmware-with-gh...

x_refsource_MISC

https://www.zyxel.com/support/gs1900-switch-vulnerabiliti...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2019
Vulnerability Reserved
Aug 29, 2019