Primary

Context

Infoblox NetMRI Authentication Bypass Vulnerability via Hardcoded Credentials

Vulnerability

An authentication bypass vulnerability has been identified in Infoblox NetMRI versions prior to 7.6.1. This issue arises from hardcoded credentials in the Process Manager, which can be exploited by an attacker with knowledge of the affected API endpoints.

Impact

Exploitation of this vulnerability allows for authentication bypass, potentially leading to unauthorized access or actions within the application.

Remediation

Users can apply the hotfix available on the Infoblox autoupdate server for NetMRI versions 7.5.3, 7.5.4, and 7.6.0. This hotfix can be installed using the 'au' command. Alternatively, customers can upgrade to NetMRI version 7.6.1 or later, where this vulnerability is addressed. For any additional queries, please contact Infoblox Support.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

5.9

remediation

7.7

relevance

0.0

threat

0.6

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

5.9

remediation

7.7

relevance

0.0

threat

0.6

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Infoblox NetMRI Authentication Bypass Vulnerability via Hardcoded Credentials

Vulnerability

Impact

Remediation

Affected Products

Infoblox NetMRI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating