Inaba Denki Sangyo Co Ltd Ac-Pd-Wps-11Ac vulnerabilities
8 known vulnerabilities affecting inaba_denki_sangyo_co_ltd/ac-pd-wps-11ac.
Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2025-27797P2CRITICALCVSS 9.8vv2.0.03P and earlier2025-04-09
CVE-2025-27797 [CRITICAL] CWE-78 CVE-2025-27797: OS command injection vulnerability in the specific service exists in Wi-Fi AP UNIT 'AC-WPS-11ac seri
OS command injection vulnerability in the specific service exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS command may be executed by a remote attacker who can log in to the product.
nvd
CVE-2025-25053P2HIGHCVSS 8.8vv2.0.03P and earlier2025-04-09
CVE-2025-25053 [HIGH] CWE-78 CVE-2025-25053: OS command injection vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-
OS command injection vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS command may be executed by a remote attacker who can log in to the product.
nvd
CVE-2025-29870P3HIGHCVSS 7.5vv2.0.03P and earlier2025-04-09
CVE-2025-29870 [HIGH] CWE-306 CVE-2025-29870: Missing authentication for critical function vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac seri
Missing authentication for critical function vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote unauthenticated attacker may obtain the product configuration information including authentication information.
nvd
CVE-2025-27934P3HIGHCVSS 7.5vv2.0.03P and earlier2025-04-09
CVE-2025-27934 [HIGH] CWE-497 CVE-2025-27934: Information disclosure of authentication information in the specific service vulnerability exists in
Information disclosure of authentication information in the specific service vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote unauthenticated attacker may obtain the product authentication information.
nvd
CVE-2025-27722P4MEDIUMCVSS 5.9vv2.0.03P and earlier2025-04-09
CVE-2025-27722 [MEDIUM] CWE-319 CVE-2025-27722: Cleartext transmission of sensitive information issue exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'.
Cleartext transmission of sensitive information issue exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a man-in-the-middle attack may allow a remote unauthenticated attacker to eavesdrop the communication and obtain the authentication information.
nvd
CVE-2025-25213P4MEDIUMCVSS 6.5vv2.0.03P and earlier2025-04-09
CVE-2025-25213 [MEDIUM] CWE-1021 CVE-2025-25213: Improper restriction of rendered UI layers or frames issue exists in Wi-Fi AP UNIT 'AC-WPS-11ac seri
Improper restriction of rendered UI layers or frames issue exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If a user views and clicks on the content on the malicious page while logged in, unintended operations may be performed.
nvd
CVE-2025-23407P4MEDIUMCVSS 4.3vv2.0.03P and earlier2025-04-09
CVE-2025-23407 [MEDIUM] CWE-266 CVE-2025-23407: Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNI
Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges.
nvd
CVE-2025-25056P4MEDIUMCVSS 4.3vv2.0.03P and earlier2025-04-09
CVE-2025-25056 [MEDIUM] CWE-352 CVE-2025-25056: Cross-site request forgery vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If a user vie
Cross-site request forgery vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If a user views a malicious page while logged in, unintended operations may be performed.
nvd