WEB Daikin Security Gateway 214 Remote Password Reset (CVE-2025-10127)

Rule ID

1236662

Severity

Medium

Description

The Daikin Security Gateway exposes a critical vulnerability in its password reset API endpoint. Due to an insecure direct object reference (IDOR) flaw, an unauthenticated attacker can send a crafted POST request to this endpoint, bypassing authentication mechanisms. Successful exploitation resets the system credentials to the default Daikin:Daikin username and password combination.

Impact

Policy bypass

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Allow

References

CVE-2025-10127

ICSA-25-254-10

T1078

T1210

T0866

Keywords

N/A

Date Created

2025/04/30

Last Updated

2025/09/12

This website uses cookies to ensure you get the best experience on our website.

Learn more