Change Manager supports the standard bootparams services for initial installations.
IP address.
None.
No authorization check is done for the requesting client, which does not appear as a serious vulnerability.
No authorization check is done for the responding server, which is a potentially serious vulnerability as it might allow a rogue server to subvert an initial installation.
None.
None.
Flood attacks and corruption attacks might disrupt service.
None.