CVE-2025-46275

CRITICAL

9.8

Descripcion

WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without knowing any existing credentials.

Detalles CVE

Puntuacion CVSS v3.19.8

SeveridadCRITICAL

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosNONE

Interaccion usuarioNONE

Publicado4/24/2025

Ultima modificacion4/29/2025

Fuentenvd

Avistamientos honeypot0

Debilidades (CWE)

CWE-306

Referencias

https://www.cisa.gov/news-events/ics-advisories/icsa-25-114-06(ics-cert@hq.dhs.gov)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.