Taiko AG1000-01A SMS Alert Gateway Authentication Bypass Vulnerability

An authentication bypass vulnerability has been identified in the Taiko AG1000-01A SMS Alert Gateway, specifically in versions through Rev 8. This vulnerability resides in the embedded web configuration interface, allowing unauthenticated attackers to access internal application pages without any session management or server-side authentication checks. With network access, attackers can directly request internal resources such as index.zhtml, point.zhtml, and log.shtml. Exploiting this vulnerability grants full administrative read and write access, enabling unauthorized modifications of alarm routing, device configuration, and disruption of monitoring and control functions.

Impact

Exploitation of this vulnerability allows unauthenticated access to administrative functions, including full read and write access to internal application resources. This access can be used to disrupt monitoring and control functions, modify device configurations, and alter alarm routing, potentially leading to operational sabotage in industrial environments.

Remediation

No official security patches or firmware updates are expected, as the vendor appears to be inactive. Organizations are advised to isolate the device from internet-facing networks, place it in a non-routing Management VLAN, and require secure VPN access for remote configuration.