Primary

Context

ProSoft Technology ICX35-HWC Authentication Bypass Vulnerability

Vulnerability

Patched

An authentication bypass vulnerability has been identified in the web user interface of ProSoft Technology ICX35-HWC cellular gateways, in all versions through 1.3. This vulnerability allows unauthenticated attackers to access administrative functions without valid credentials, enabling full administrative control over the device's configuration and settings.

Impact

Exploitation of this vulnerability allows unauthorized users to gain full administrative access to the affected device's configuration and settings.

Remediation

Users are advised to update the firmware on all ICX35 gateways to version 1.3 or later. The firmware can be updated through ProSoft Connect or by downloading the firmware files from the Downloads section of the ICX35 product web page.

Added: Apr 3, 2026, 11:31 PM

Updated: Apr 3, 2026, 11:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.4

remediation

7.7

relevance

5.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.4

remediation

7.7

relevance

5.2

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ProSoft Technology ICX35-HWC Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

ProSoft Technology ICX35-HWC

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating