資安通報

2025-SA-1

ZDI-CAN-26647 : eco DC Missing Authorization Privilege Escalation Vulnerability

A vulnerability has been discovered in ATEN eco DC firmware versions prior to V1.2.116 that could allow malicious users to bypass authorization restrictions on multiple endpoints.

Solution:
Aten has developed appropriate solutions FW:V1.2.116 to patch the security vulnerabilities. The following are the solutions for the affected products.
View Security Advisory on Aten Website

Release Date: 2025/07/02