CVE-2025-46272
published 2025-04-24CVE-2025-46272: WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to execute OS commands on the host…
PriorityP270critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
EPSS
1.34%
67.8th percentile
WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection
attack that could allow an unauthenticated attacker to execute OS
commands on the host system.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| planet_technology | wgs-4215-8t2s | <= 1.305b241115 | — |
| planet_technology | wgs-804hpt-v2 | <= 2.305b250121 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →CVE-2025-46272 affects WGS-804HPT-V2 (versions 2.305b250121 and prior) and WGS-4215-8T2S (versions 1.305b241115 and prior); detect unauthenticated OS command injection attempts targeting these devices on the network ↗
- →CVE-2025-46272 is remotely exploitable with no authentication and low attack complexity (CVSS v4 9.3, AV:N/AC:L/AT:N/PR:N/UI:N); prioritize monitoring inbound network traffic to WGS-804HPT-V2 and WGS-4215-8T2S management interfaces for anomalous or shell-metacharacter-laden requests ↗
- →Companion vulnerability CVE-2025-46275 on the same devices allows unauthenticated creation of administrator accounts; correlate with CVE-2025-46272 exploitation attempts as attackers may chain both to achieve persistent access ↗
- ·No public exploitation of CVE-2025-46272 had been reported to CISA at time of advisory publication; threat posture may change as patches are released and details become public ↗
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv4.09.3CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Planet Technology Network Products
cisa_ics·2025-04-24·CVSS 9.1
[CRITICAL] Planet Technology Network Products
ICS Advisory
##
Planet Technology Network Products
Release DateApril 24, 2025
Alert CodeICSA-25-114-06
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 9.3
- ATTENTION: Exploitable remotely/Low attack complexity
- Vendor: Planet Technology
- Equipment: Planet Technology Network Products
- Vulnerabilities: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'), Use of Hard-coded Credentials, Missing Authentication for Critical Function
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to read or manipulate device data, gain administrative privileges, or alter database entries.
## 3. TECHNICAL D
GHSA
GHSA-89j9-cchw-j26m: WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection
attack that could allow an unauthenticated attacker to execute OS
commands on the
ghsa_unreviewed·2025-04-25
CVE-2025-46272 [CRITICAL] CWE-78 GHSA-89j9-cchw-j26m: WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection
attack that could allow an unauthenticated attacker to execute OS
commands on the
WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection
attack that could allow an unauthenticated attacker to execute OS
commands on the host system.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-04-24
Published