1. About the Vulnerability
1.1 Introduction
IP-guard is a software program designed for enterprises to monitor and manage the security of their internal network. It provides features such as network resource monitoring, access control, data protection, and security audit, which help enterprises operate with higher network security and management efficiency.
1.2 Summary
On April 17, 2024, Sangfor FarSight Labs received notification of a permission bypass vulnerability in the component of IP-guard, classified as high severity.
The vulnerability is caused by the improper access control of IP-guard. Attackers can exploit this vulnerability by crafting malicious data to bypass permission verification, access the backend, and execute operations such as arbitrary file read without authorization, resulting in the leakage of sensitive server information.
2. Affected Versions
IP-guard < 4.82.0609.0
3. Vulnerability Verification
Sangfor FarSight Labs created an IP-guard environment to reproduce the vulnerability, as shown in the figure below.
4. Solutions
4.1 Remediation Solutions
4.1.1 Check the Component Version
Log in to the IP-guard backend and go to Help > About to view the software version, as shown in the figure below.
4.1.2 Official Solution
TEC Solutions Limited, which is the company that developed IP-guard, has released a new version of IP-guard, and affected users are strongly recommended to update to the latest version to fix the vulnerability. For more information, visit
5. Timeline
On April 16, 2024, Sangfor FarSight Labs received notification of a vulnerability in the component of IP-guard.
On April 17, 2024, Sangfor FarSight Labs released a vulnerability alert.
