cbcvebase.
CVE-2025-23407
published 2025-04-09

CVE-2025-23407: Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who…

PriorityP421medium4.3CVSS 3.1
AVNACLPRLUINSUCNILAN
EPSS
0.34%
25.3th percentile
Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges.

Affected

6 ranges
VendorProductVersion rangeFixed in
inaba_denki_sangyo_co_ltdac-pd-wps-11ac
inaba_denki_sangyo_co_ltdac-pd-wps-11ac-p
inaba_denki_sangyo_co_ltdac-wps-11ac
inaba_denki_sangyo_co_ltdac-wps-11ac-p
inaba_denki_sangyo_co_ltdac-wpsm-11ac
inaba_denki_sangyo_co_ltdac-wpsm-11ac-p
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.