Description
The Mennekes Amtron series (firmware versions ≤ 5.22.3) is vulnerable to an authentication bypass. An unauthenticated remote attacker can change the password of the user account via a crafted POST request to the /operator/operator endpoint.
Published: 2026-05-28
Score: 9.3 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Mennekes Amtron series firmware up to version 5.22.3 contains an authentication bypass that permits an unauthenticated remote attacker to change a user account password by sending a specially crafted POST request to the /operator/operator endpoint. This flaw enables the attacker to gain unauthorized control over the device, effectively elevating privileges without proper authentication. The weakness is a classic authorization flaw identified by CWE-287 and can compromise confidentiality, integrity, and future authentication mechanisms.

Affected Systems

Mennekes Amtron series devices running firmware versions 5.22.3 or earlier.

Risk and Exploitability

The CVSS score of 9.3 classifies the vulnerability as Critical, indicating a severe impact if successfully exploited. Although EPSS data is unavailable, the lack of a KEV listing suggests no known public exploits have been documented as of the current assessment. An attacker can reach the vulnerable endpoint by sending an HTTP POST request to the device’s /operator/operator path, which may be exposed over internal or public networks. The vulnerability requires no local privileged user or cached credentials, making the attack vector remote and straightforward once network access exists.

Generated by OpenCVE AI on May 28, 2026 at 15:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the device firmware to a version newer than 5.22.3.
  • Restrict network access to the /operator/operator endpoint by applying firewall rules or ACLs.
  • Disable or enforce strong authentication on the operator interface if an update cannot be applied immediately.

Generated by OpenCVE AI on May 28, 2026 at 15:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 16:00:00 +0000

Type Values Removed Values Added
First Time appeared Mennekes
Mennekes amtron
Vendors & Products Mennekes
Mennekes amtron

Thu, 28 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 28 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description The Mennekes Amtron series (firmware versions ≤ 5.22.3) is vulnerable to an authentication bypass. An unauthenticated remote attacker can change the password of the user account via a crafted POST request to the /operator/operator endpoint.
Title Authentication Bypass
Weaknesses CWE-287
References
Metrics cvssV4_0

{'score': 9.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P'}

Subscriptions

Mennekes Amtron
cve-icon MITRE

Status: PUBLISHED

Assigner: CyberDanube

Published:

Updated: 2026-05-28T14:21:33.159Z

Reserved: 2026-05-19T13:11:28.172Z

Link: CVE-2026-8979

cve-icon Vulnrichment

Updated: 2026-05-28T14:21:29.135Z

cve-icon NVD

Status : Deferred

Published: 2026-05-28T14:16:24.910

Modified: 2026-05-28T18:56:36.823

Link: CVE-2026-8979

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T15:48:31Z

Weaknesses