Axiros · Axess Auto Configuration Server · CVE-2024-33898
**Name of the Vulnerable Software and Affected Versions**
Axiros AXESS Auto Configuration Server (ACS) versions 4.x through 5.0.0
**Description**
The issue is related to Incorrect Access Control, allowing an authorization bypass that enables remote attackers to achieve unauthenticated remote code execution.
**Recommendations**
For versions 4.x through 5.0.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.