CVE-2025-47697

Summary

Client-side enforcement of server-side security issue exists in wivia 5 all versions. If exploited, an unauthenticated attacker may bypass authentication and operate the affected device as the moderator user.

Affected Software

VendorProductVersion RangeStatus
UCHIDA YOKO CO., LTD.wivia 5all versionsaffected

Weaknesses

  • CWE-602: Client-side enforcement of server-side security

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References