cbcvebase.
CVE-2025-25053
published 2025-04-09

CVE-2025-25053: OS command injection vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS command may be…

PriorityP259high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.88%
54.7th percentile
OS command injection vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS command may be executed by a remote attacker who can log in to the product.

Affected

6 ranges
VendorProductVersion rangeFixed in
inaba_denki_sangyo_co_ltdac-pd-wps-11ac
inaba_denki_sangyo_co_ltdac-pd-wps-11ac-p
inaba_denki_sangyo_co_ltdac-wps-11ac
inaba_denki_sangyo_co_ltdac-wps-11ac-p
inaba_denki_sangyo_co_ltdac-wpsm-11ac
inaba_denki_sangyo_co_ltdac-wpsm-11ac-p
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.