A high-severity vulnerability allows unauthenticated remote attackers to disrupt system operations by unauthorized switching of configuration presets via HTTP.

This flaw allows an unauthenticated remote attacker to manipulate system configuration presets through unauthorized HTTP requests. By exploiting the lack of authentication on the configuration management interface, an attacker can trigger state changes that disrupt normal operations.

With a CVSS score of 7.5, this vulnerability poses a high risk to operational continuity and system integrity. Successful exploitation could lead to unauthorized system state changes, service denial, or data processing errors, resulting in significant reputational damage and potential financial loss due to downtime. The ability for an external actor to modify internal settings without credentials represents a critical failure in access control.

Immediate Action: Organizations should identify all affected assets and apply the latest security updates provided by the vendor immediately to secure the configuration interface.

Proactive Monitoring: Administrators should review HTTP access logs for anomalous requests targeting configuration endpoints and monitor for unauthorized changes to system presets.

Compensating Controls: Implement a Web Application Firewall (WAF) to filter traffic to management interfaces and enforce strict IP-based access control lists (ACLs) to limit exposure.

Public Exploit Available: false

The ability for an unauthenticated attacker to alter system configurations remotely represents a significant security gap that must be addressed with high priority. We strongly recommend that all affected systems be patched immediately to prevent unauthorized operational disruptions. If patching is not immediately feasible, the management interface should be isolated from the public internet.