The privilege escalation vulnerability in the Zyxel GS1900-8 firmware version V2.70(AAHH.3) and the GS1900-8HP firmware version V2.70(AAHI.3) could allow an authenticated, local attacker with administrator privileges to execute some system commands as 'root' on a vulnerable device via SSH.
2023-05-30T11:15:09.237
2025-01-10T18:15:14.623
Modified
CVSSv3.1: 6.7 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | zyxel | gs1900-8_firmware | 2.70\(aahh.3\) | Yes |
| Hardware | zyxel | gs1900-8 | - | No |
| Operating System | zyxel | gs1900-8hp_firmware | 2.70\(aahi.3\) | Yes |
| Hardware | zyxel | gs1900-8hp | - | No |
| Operating System | zyxel | gs1900-10hp_firmware | 2.70\(aazi.3\) | Yes |
| Hardware | zyxel | gs1900-10hp | - | No |
| Operating System | zyxel | gs1900-16_firmware | 2.70\(aahj.3\) | Yes |
| Hardware | zyxel | gs1900-16 | - | No |
| Operating System | zyxel | gs1900-24_firmware | 2.70\(aahl.3\) | Yes |
| Hardware | zyxel | gs1900-24 | - | No |
| Operating System | zyxel | gs1900-24e_firmware | 2.70\(aahk.3\) | Yes |
| Hardware | zyxel | gs1900-24e | - | No |
| Operating System | zyxel | gs1900-24ep_firmware | 2.70\(abto.3\) | Yes |
| Hardware | zyxel | gs1900-24ep | - | No |
| Operating System | zyxel | gs1900-24hpv2_firmware | 2.70\(abtp.3\) | Yes |
| Hardware | zyxel | gs1900-24hpv2 | - | No |
| Operating System | zyxel | gs1900-48_firmware | 2.70\(aahn.3\) | Yes |
| Hardware | zyxel | gs1900-48 | - | No |
| Operating System | zyxel | gs1900-48hpv2_firmware | 2.70\(abtq.3\) | Yes |
| Hardware | zyxel | gs1900-48hpv2 | - | No |