Description
Axiros AXESS Auto Configuration Server (ACS) 4.x and 5.0.0 has Incorrect Access Control. An authorization bypass allows remote attackers to achieve unauthenticated remote code execution.
References
https://www.axiros.com/2024/03/vulnerability-in-axusermanager