Deep Sea Electronics DSE855 Authentication Bypass Vulnerability Allowing Admin Access
Vulnerability
A vulnerability in the DSE855 communications device from Deep Sea Electronics, affecting versions 1.1.0 to 1.1.26, allows unauthorized access to the admin panel. The issue arises from improper access control in the realtime.cgi endpoint, which exposes sensitive information including the session identifier (SID) used for authentication. This SID can be exploited to gain full control of the device via the management web interface.
Impact
Exploitation of this vulnerability bypasses authentication, allowing unauthorized users to access the administrative web interface and control the device.
Reproduction
To reproduce this vulnerability, access the realtime.cgi endpoint, which will disclose the session identifier (SID) along with other sensitive information such as user IDs, roles, and device status. Once the SID is obtained, it can be manually set in the browser's cookie storage. After setting the SID, navigate to the secure/index.html endpoint to gain unauthorized access to the admin panel.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.