An unauthenticated remote attacker could reset the administrator's password with information from the default, self-signed certificate.
In ifm moneo appliance with version up to 1.9.3 an unauthenticated remote attacker can reset the administrator password by only supplying the serial number.
An unathenticated attacker can remotely reset the administrator password.
The password-reset mechanism will be updated in a future version.
When using automation components, make sure that no unauthorized access can take place. In addition, measures should be taken to ensure that the components do not have direct access to Internet resources and that they cannot be accessed from insecure networks. Use available security measures such as authentication and authorization groups.
CERT@VDE coordinated with IFM.
Aimon Dawson for reporting to IFM.