CVE-2025-10204
published 2025-09-14CVE-2025-10204: A vulnerability has been discovered in AC Smart II where passwords can be changed without authorization. This page contains a hidden form for resetting the…
PriorityP181high7.1CVSS 4.0
AVAACLATNPRNUINVCNVINVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
0.45%
35.9th percentile
A vulnerability has been discovered in AC Smart II where passwords can be changed without authorization. This page contains a hidden form for resetting the administrator password. The attacker can manipulate the page using developer tools to display and use the form. This form allows you to change the administrator password without verifying login status or user permissions.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lg_electronics | ac_smart_ii | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Use Shodan or FOFA to identify exposed AC Smart II instances via the fingerprint string 'Doc/WebLogin.asp' in the HTML body. ↗
- →The hidden password reset form (div_admin_pwd) can be revealed via browser developer tools and submitted without any authentication or session validation, allowing unauthenticated admin password reset. ↗
- ·The hidden password reset form is embedded directly in the login page (/Doc/WebLogin.asp) with CSS visibility:hidden. No authentication or session token is required to submit it, meaning exploitation requires only network access to the device. ↗
CVSS provenance
nvdv4.07.1HIGHCVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vulncheck7.1HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pcwr-jxjv-7h3c: A vulnerability has been discovered in AC Smart II where passwords can be changed without authorization
ghsa_unreviewed·2025-09-14
CVE-2025-10204 [HIGH] CWE-306 GHSA-pcwr-jxjv-7h3c: A vulnerability has been discovered in AC Smart II where passwords can be changed without authorization
A vulnerability has been discovered in AC Smart II where passwords can be changed without authorization. This page contains a hidden form for resetting the administrator password. The attacker can manipulate the page using developer tools to display and use the form. This form allows you to change the administrator password without verifying login status or user permissions.
VulnCheck
Missing Authentication for Critical Function
vulncheck·2025·CVSS 7.1
CVE-2025-10204 [HIGH] Missing Authentication for Critical Function
Missing Authentication for Critical Function
A vulnerability has been discovered in AC Smart II where passwords can be changed without authorization. This page contains a hidden form for resetting the administrator password. The attacker can manipulate the page using developer tools to display and use the form. This form allows you to change the administrator password without verifying login status or user permissions.
Affected: LG AC Smart II
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://dashboard.shadowserver.org/statistics/honeypot/vulnerability/map/?day=2025-12-31&host_type=src&vulnerability=cve-2025-10204; https://dashboard.shadowserver.org
No detection rules found.
Nuclei
AC Smart II - Authentication Bypass
nuclei·CVSS 7.1
CVE-2025-10204 [HIGH] AC Smart II - Authentication Bypass
AC Smart II - Authentication Bypass
AC Smart II contains an authentication bypass caused by a hidden password reset form that can be manipulated to change the administrator password without verifying login or permissions, letting attackers change admin passwords without authorization.
Template:
id: CVE-2025-10204
info:
name: AC Smart II - Authentication Bypass
author: theeldruin
severity: high
description: |
AC Smart II contains an authentication bypass caused by a hidden password reset form that can be manipulated to change the administrator password without verifying login or permissions, letting attackers change admin passwords without authorization.
impact: |
Attackers can change the administrator password without authorization, leading to full system takeover.
remediation: |
Updat
No writeups or analysis indexed.
2025-09-14
Published
Exploited in the wild