Re: @AC - "just as flawed"?
In an environment concerned with security, the management plane would be protected by ACL's, multiple layers of firewalling, intrusion detection systems and likely air-gapped management.
It's a bug (more likely misconfiguration of an OS build script) that needs to be fixed - the operational risk of the issue is likely tiny.
In a less security focussed environment, these a still data centre class switches (no PoE, 10/25/40/50/100Gbps ports, above average cost per port due to buffering and other features) and without any additional devices, I would expect the switches to be protected by ACL's at a minimum.
Biting the hand that feeds IT
