Microchip IStaX Privilege Escalation Vulnerability via Weak Cookie Authentication
Vulnerability
A privilege escalation vulnerability exists in Microchip IStaX versions prior to 2026.03. This vulnerability allows an authenticated low-privileged user to extract a shared per-device cookie secret from their webstax_auth session cookie. The user can then forge a new cookie that grants administrative privileges. The issue arises from the web management interface's cookie design, which inadvertently allows the derivation of reusable secrets that can be exploited to gain higher privileges.
Impact
Exploitation of this vulnerability provides full administrative access to the device's web interface, bypassing the standard login process. This unauthorized access can lead to unmonitored configuration changes or disruptions in service.
Remediation
Users are advised to upgrade Microchip IStaX to version 2026.03 or later, which addresses the vulnerability by modifying how authentication cookies are handled, preventing low-privileged users from deriving secrets and creating higher-privilege cookies.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.