cbcvebase.
CVE-2025-49151
published 2025-06-25

CVE-2025-49151: The affected products could allow an unauthenticated attacker to generate forged JSON Web Tokens (JWT) to bypass authentication.

PriorityP262critical9.3CVSS 4.0
AVNACLATNPRNUINVCHVIHVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.54%
41.1th percentile
The affected products could allow an unauthenticated attacker to generate forged JSON Web Tokens (JWT) to bypass authentication.

Affected

1 ranges
VendorProductVersion rangeFixed in
microsensnmp_web<= Version 3.2.5

Detection & IOCsextracted from sources · hover to see the quote

  • CVE-2025-49151 exploits a hard-coded, security-relevant constant (CWE-547) in MICROSENS NMP Web+ to forge JWT tokens and bypass authentication; detect unauthenticated requests bearing JWT tokens to NMP Web+ endpoints, especially from unexpected sources
  • NMP Web+ versions 3.2.5 and prior are vulnerable; flag any NMP Web+ instance not yet updated to 3.3.0 as at-risk for forged JWT authentication bypass
  • The vulnerability is remotely exploitable with no authentication and low attack complexity (CVSS v4 9.3, AV:N/AC:L/AT:N/PR:N/UI:N); prioritize network-level monitoring for unauthenticated access attempts to NMP Web+ management interfaces
  • ·The hard-coded JWT secret is embedded in the product itself (CWE-547); any JWT signed with this static secret should be treated as potentially forged until the device is patched to version 3.3.0
  • ·A related vulnerability (CVE-2025-49152) means JWTs issued by NMP Web+ 3.2.5 and prior do not expire, compounding the risk — even revoked sessions may remain valid
  • ·A chained path traversal vulnerability (CVE-2025-49153) allows an unauthenticated attacker who has forged a JWT to overwrite files and execute arbitrary code, making CVE-2025-49151 a critical first step in a full RCE chain
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.