Zyoxel GS1900 Switch Post-Auth Command Injection and Buffer Overflow (CVE-2024-8881/8882)

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability Name: Zyoxel security advisory for post-authentication command injection and buffer overflow vulnerabilities in GS1900 series switches. 2. CVE IDs: CVE-2024-8881 and CVE-2024-8882. 3. Vulnerability Description: - CVE-2024-8881: A post-authentication command injection vulnerability exists in the CGI program of Zyoxel GS1900 series switches, allowing a local attacker with administrative privileges to execute certain operating system commands by sending a crafted HTTP request. - CVE-2024-8882: A buffer overflow vulnerability exists in the CGI program of Zyoxel GS1900 series switches, allowing a local attacker with administrative privileges to cause a service disruption by crafting a malicious URL. 4. Affected Devices: - GS1900-8 - GS1900-8HP - GS1900-10HP - GS1900-16 - GS1900-24 - GS1900-24E - GS1900-24EP - GS1900-24HPv2 - GS1900-48 - GS1900-48HPv2 5. Affected Versions: - V2.80(AAHH.1)C0 and earlier - V2.90(AAHI.0)C0 - V2.80(AAZI.1)C0 and earlier - V2.90(AAZI.0)C0 - V2.80(AAHJ.1)C0 and earlier - V2.90(AAHJ.0)C0 - V2.80(AAHL.1)C0 and earlier - V2.90(AAHL.0)C0 - V2.80(AAHK.1)C0 and earlier - V2.90(AAHK.0)C0 - V2.80(ABTO.1)C0 and earlier - V2.90(ABTO.0)C0 - V2.80(ABTP.1)C0 and earlier - V2.90(ABTP.0)C0 - V2.80(AAHN.1)C0 and earlier - V2.90(AAHN.0)C0 - V2.80(ABTQ.1)C0 and earlier - V2.90(ABTQ.0)C0 6. Recommendation: Users should install the patches provided by Zyoxel for optimal protection. 7. Contact Information: For any questions, please contact your local service representative or visit the Zyoxel community for more information or assistance. 8. Acknowledgements: Thanks to Chengchao Ai and Xing Yang from the ROIS team at Fuzhou University for their contributions to CVE-2024-8881 and CVE-2024-8882.

Goal Reached Thanks to every supporter — we hit 100%!

Zyoxel GS1900 Switch Post-Auth Command Injection and Buffer Overflow (CVE-2024-8881/8882)