A critical authentication bypass in NetMan 204 allows remote, unauthenticated attackers to access administrative functions and execute privileged commands on the device.

The device fails to enforce authentication checks for administrative endpoints, including administration.html and various command endpoints. An unauthenticated attacker can remotely trigger actions such as system reboots, shutdowns, and battery tests.

The CVSS score of 9.8 underscores the extreme risk of this vulnerability. An attacker can gain unauthorized access to sensitive configuration data (such as LDAP settings) and disrupt critical infrastructure by issuing unauthorized power management commands to UPS hardware.

Immediate Action: Update the NetMan 204 firmware to the latest available version that enforces proper authentication.

Proactive Monitoring: Monitor access logs for requests to management pages from unauthorized internal or external IP addresses.

Compensating Controls: Restrict access to the management web interface using firewall rules to ensure that only authorized administrative workstations can reach the device.

Public Exploit Available: True

This is a critical vulnerability that directly impacts the availability and security of the managed hardware. All organizations must prioritize updating these devices and ensuring that management interfaces are not exposed to the public internet or untrusted network segments.