An authentication bypass vulnerability in SafeLine SL6 and SL6+ intercom devices poses a significant security risk by granting unauthorized access to critical life-safety infrastructure.

The device suffers from an authentication bypass flaw, allowing unauthenticated remote or local attackers to circumvent login mechanisms. This grants unauthorized access to the intercom's administrative interface and functional controls.

The CVSS score of 8.7 reflects a high severity, particularly given the physical and safety-critical nature of the affected hardware. Unauthorized access could lead to the hijacking of emergency communication lines, creating severe safety risks and operational liability for facility managers.

Immediate Action: Apply all available firmware updates provided by SafeLine immediately to remediate the authentication flaw.

Proactive Monitoring: Review access logs for unauthorized attempts to reach administrative web interfaces or management ports on intercom hardware.

Compensating Controls: Isolate intercom management interfaces from public networks using VLANs or VPNs to restrict access to authorized personnel only.

Public Exploit Available: false

This vulnerability represents a critical risk due to the nature of the hardware involved. Administrators must treat this as a high-priority update and ensure all affected intercom units are patched to prevent unauthorized remote access to safety-critical systems.