Eibiz i-Media Server Digital Signage Authentication Bypass Vulnerability Allowing Unauthenticated Admin User Creation
Vulnerability
An authentication bypass vulnerability has been identified in Eibiz i-Media Server Digital Signage version 3.8.0. This vulnerability allows unauthenticated attackers to create admin users by manipulating AMF-encoded objects. Exploitation involves sending crafted serialized objects to the /messagebroker/amf endpoint, thereby bypassing authentication and security controls.
Impact
Exploitation of this vulnerability leads to unauthorized privilege escalation, allowing attackers to create admin users without authentication. This could enable them to modify data displayed on screens or billboards.
Reproduction
The vulnerability can be reproduced by sending a serialized AMF-encoded object to the /messagebroker/amf endpoint. This object must be crafted to include the desired username for the admin account. Once the object is sent, the server will create the admin user without requiring any authentication.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.