5
CVE-2025-48461
- EPSS 0.01%
- Veröffentlicht 24.06.2025 02:02:08
- Zuletzt bearbeitet 09.07.2025 15:02:51
- Quelle 5f57b9bf-260d-4433-bf07-b6a79e
- Teams Watchlist Login
- Unerledigt Login
Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the session cookies are predictable, potentially allowing the attackers to gain root, admin or user access and reset passwords.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Advantech ≫ Wise-4060lan Firmware Version-
Advantech ≫ Wise-4050lan Firmware Version-
Advantech ≫ Wise-4010lan Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.011 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4 | 5 | 1.6 | 3.4 |
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
|
CWE-341 Predictable from Observable State
A number or object is predictable based on observations that the attacker can make about the state of the system or network, such as time, process ID, etc.