Primary

Context

DuraComm SPM-500 DP-10iN-100-MU Missing Authentication Vulnerability Allowing Unauthorized Reboots

Vulnerability

A vulnerability exists in the DuraComm SPM-500 DP-10iN-100-MU power distribution panel, all versions through 4.10. The issue arises from a lack of access controls for a function that should require user authentication, potentially allowing an attacker to repeatedly reboot the device. Additionally, the product transmits sensitive information in cleartext over unencrypted channels, which could be intercepted by attackers.

Impact

Exploitation of this vulnerability could lead to unauthorized reboots of the device, causing a denial-of-service condition.

Remediation

Users are advised to update to Version 4.10A. Contact DuraComm to obtain the update.

Added: Jul 22, 2025, 10:39 PM

Updated: Jul 22, 2025, 10:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.2

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

DuraComm SPM-500 DP-10iN-100-MU Missing Authentication Vulnerability Allowing Unauthorized Reboots

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating