CVE-2024-33898 Information

Description

Axiros AXESS Auto Configuration Server (ACS) 4.x and 5.0.0 has Incorrect Access Control. An authorization bypass allows remote attackers to achieve unauthenticated remote code execution.

Reference

https://www.axiros.com/2024/03/vulnerability-in-axusermanager