Na mgba ọkụ dabere na ibe RTL83xx, gụnyere Cisco Small Business 220, Zyxel GS1900-24, NETGEAR GS75x, ALLNET ALL-SG8208M na ihe karịrị ngwaọrụ iri na abụọ sitere na ndị nrụpụta ama ama, adịghị ike dị oke egwu nke na-eme ka onye na-awakpo na-enweghị nkwenye nweta njikwa nke mgba ọkụ. Ihe kpatara nsogbu ndị a bụ njehie dị na Realtek Managed Switch Controller SDK, koodu sitere na ya iji kwado ngwa ngwa.
(CVE-2019-1913) na-emetụta interface njikwa webụ ma mee ka o kwe omume iji ohere ọrụ mgbọrọgwụ mebie koodu gị. Ọdịmma ahụ bụ n'ihi nnabata ezughị oke nke parampat onye ọrụ wetara yana ịghara inyocha oke nchekwa nke ọma mgbe ị na-agụ data ntinye. N'ihi nke a, onye na-awakpo nwere ike ime ka ihe nchekwa na-ejupụta site na izipu arịrịọ ahaziri ahazi ma jiri nsogbu ahụ mebie koodu ha.
(CVE-2019-1912) na-enye ohere ịkwanye faịlụ aka ike na mgba ọkụ na-enweghị nkwenye, gụnyere idegharị faịlụ nhazi na iwepụta shea azụ maka nbanye dịpụrụ adịpụ. Ihe kpatara nsogbu a bụ nlele ikike ezughị ezu na interface weebụ.
Ị nwekwara ike ịhụ na mkpochapụ obere ihe ize ndụ (CVE-2019-1914), nke na-enye ohere ka e jiri ohere mgbọrọgwụ mee iwu aka ike ma ọ bụrụ na enwere nbanye na-enweghị ohere na interface weebụ. A na-edozi okwu na Cisco Small Business 220 (1.1.4.4), Zyxel, na NETGEAR firmware update. A na-eme atụmatụ nkọwa zuru ezu nke usoro ọrụ 20 Ọgọst.
Nsogbu na-apụtakwa na ngwaọrụ ndị ọzọ dabere na ibe RTL83xx, mana ndị nrụpụta ekwenyebeghị na ha edozibeghị:
- EnGenius EGS2110P, EWS1200-28TFP, EWS1200-28TFP;
- PLANET GS-4210-8P2S, GS-4210-24T2;
- DrayTek VigorSwitch P1100;
- CERIO CS-2424G-24P;
- Xhome DownLoop-G24M;
- Abaniact (INABA) AML2-PS16-17GP L2;
- Netwọk Araknis (SnapAV) AN-310-SW-16-POE;
- EDIMAX GS-5424PLC, GS-5424PLC;
- Mepee ntupu OMS24;
- Pakedgedevice SX-8P;
- TG-NET P3026M-24POE.
isi: opennet.ru