CVE-2018-18881

Name of the Vulnerable Software and Affected Versions ControlByWeb X-320M-I Web-Enabled Instrumentation-Grade Data Acquisition module version 1.05

Description A Denial of Service issue was discovered, allowing an authenticated user to configure invalid network settings. This stops TCP-based communications to the device, requiring a physical factory reset to restore the device to an operational state.

Recommendations For version 1.05, to resolve the issue, a physical factory reset is required to restore the device to an operational state. As a temporary workaround, consider restricting access to network configuration settings to prevent unauthorized changes until a fix is available.