CVE-2025-48461

Summary

Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the session cookies are predictable, potentially allowing the attackers to gain root, admin or user access and reset passwords.

Affected Software

VendorProductVersion RangeStatus
AdvantechAdvantech Wireless Sensing and Equipment (WISE)A2.01 B00affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References