{"id":17512,"date":"2025-09-11T01:30:01","date_gmt":"2025-09-11T01:30:01","guid":{"rendered":"https:\/\/sekuritasit.com\/?p=17512"},"modified":"2025-09-11T01:30:01","modified_gmt":"2025-09-11T01:30:01","slug":"kunbus-revpi-webstatus-authentication-bypass","status":"publish","type":"post","link":"https:\/\/sekuritasit.com\/index.php\/2025\/09\/11\/kunbus-revpi-webstatus-authentication-bypass\/","title":{"rendered":"Kunbus RevPi Webstatus Authentication Bypass"},"content":{"rendered":"\n\n\n\n <\/colgroup>\n\n\n\n\n
\n

\n What is the Vulnerability?\n <\/p>\n<\/td>\n

\n

\n FortiGuard Labs has detected active attack attempts targeting the Kunbus Revolution Pi Webstatus authentication bypass vulnerability (CVE-2025-41646), a flaw that allows remote attackers to log in without a password by exploiting improper credential handling.<\/p>\n

A public proof-of-concept is already available, increasing the likelihood of widespread exploitation. The vulnerability can be triggered over the network without user interaction, granting attackers full administrative control of affected devices. Since Revolution Pi systems are frequently deployed in industrial and operational technology environments, successful exploitation could lead to unauthorized system control, data manipulation, or disruption of critical processes.<\/p>\n

CISA has issued an ICS\/OT advisory for this threat and urges organizations to update their systems immediately.\n <\/p>\n<\/td>\n<\/tr>\n

\n

\n What is the recommended Mitigation?\n <\/p>\n<\/td>\n

\n

\n \u2022 Upgrade affected systems to Revolution Pi Webstatus version 2.4.6, which addresses and corrects the authentication logic flaw.
\n
\n \u2022 Refer to the Kunbus PSIRT advisory (Kunbus-2025-0000003) for full details, including patch availability, installation instructions, and additional risk-reduction guidance\n <\/p>\n<\/td>\n<\/tr>\n

\n

\n What FortiGuard Coverage is available?\n <\/p>\n<\/td>\n

\n

\n \u2022 FortiGuard IPS protection is available to detect and block attacks related to (CVE-2025-41646) Kunbus RevPi Webstatus Authentication Bypass.
\n
\n Intrusion Prevention | FortiGuard Labs
\n <\/a>
\n
\n \u2022 FortiGuard IoT Device Detection service is available to detect the Kunbus RevPi in your network.
\n
\n IoT Device Detection | FortiGuard Labs
\n <\/a>
\n
\n \u2022 Antimalware and Sandbox Service delivers protection against known malware and uses advanced behavioral analysis to detect and block unknown threats.
\n
\n \u2022 The FortiGuard Incident Response team can be engaged to help with any suspected compromise.\n <\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

Read More<\/a>\u00a0<\/p>","protected":false},"excerpt":{"rendered":"

What is the Vulnerability? FortiGuard Labs has detected active attack attempts targeting the Kunbus Revolution Pi Webstatus authentication bypass vulnerability (CVE-2025-41646), a flaw that allows remote attackers to log in without a password by exploiting improper credential handling. A public proof-of-concept is already available, increasing the likelihood of widespread exploitation. The vulnerability can be triggered […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-17512","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"aioseo_notices":[],"aioseo_head":"\n\t\t\n\t\n\t\n\t\n\t\n\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t