CVE-2025-68916

Riello · NetMan 208

A directory traversal vulnerability in the Riello NetMan 208 firmware allows unauthenticated attackers to upload arbitrary files, leading to remote code execution.

Executive summary

A critical directory traversal vulnerability in Riello NetMan 208 allows unauthenticated attackers to achieve remote code execution via malicious file uploads.

Vulnerability

The vulnerability exists in the cgi-bin/certsupload.cgi script, which fails to properly sanitize input, allowing directory traversal. This enables an unauthenticated attacker to upload files to arbitrary locations on the system, resulting in remote code execution.

Business impact

Successful exploitation of this vulnerability grants an attacker full control over the affected UPS management hardware. Given the critical CVSS score of 9.1, this represents a severe risk of unauthorized access, potential lateral movement into the internal network, and total compromise of the power management infrastructure.

Remediation

Immediate Action: Upgrade the Riello NetMan 208 firmware to version 1.12 or later immediately to resolve the directory traversal flaw.

Proactive Monitoring: Inspect system logs for unusual file upload activity or unauthorized access attempts targeting the cgi-bin directory.

Compensating Controls: Restrict network access to the NetMan 208 management interface to trusted administrative subnets only via firewall rules.

Exploitation status

Public Exploit Available: Not specified

Analyst recommendation

This vulnerability poses a significant risk to critical power infrastructure management. Administrators must prioritize updating the firmware to version 1.12 to close the attack vector and prevent potential remote code execution.