© ZyXEL Communication Corp.
Page
19 of 31
Proprietary & Confidential Information
[Feature Enhancement]
[Bug Fix]
Modifications in V1.00(AAPQ.12)b1
Based on
1.00(AAKL.18)C0
to release V1.00(AAPQ.12)b1.
[Configuration Modification]
[Feature Enhancement]
[Bug Fix]
1.
[#37310]Dirty-CoW Security Issue.
2.
[#37314]Hajime security vulnerability.
3.
[#37315]Use nmap to discover vulnerability.
4.
[#37316]Linux shell access via admin/user privilege.
5.
[#37317]Security issue.
1) Forbid admin from write action for /dev/mtd[x] & /dev/mtdblock[x] per Jason’s recommendation
2) Implement conditional randomizing of supervisor/root password on firmware update.
3) Remove zyuser from C0 default
4) Restrict user group CLI privileges.
5) Ability to pass BT’s MCT R.OAM.2 802.1ag CFM requirement
Modifications in V1.00(AAPQ.11)C0
Based on
1.00(AAPQ.11)b2
to release V1.00(AAPQ.11)C0.
[Configuration Modification]
1.
[User Account] [Hajime Issue] Remove user account from default setting
[Feature Enhancement]
[Bug Fix]
Modifications in V1.00(AAPQ.11)b2
Based on
1.00(AAKL.16)C0
to release V1.00(AAPQ.11)b2.
[Configuration Modification]
[Feature Enhancement]
[Bug Fix]
1.
[160500285][VMG8924-B30A]RTSP problems
2.
[161200526][VMG8924-B30A]Unable to create ICMPv6 rule
3.
[170100262][VMG8924-B30A]Admin is able to save rom-d via zyshell
4.
[#33485][VMG8924-B30A][ZyXEL CPE] Blacknurse Security Issue
