CVE Vulnerabilities

CVE-2025-23407

Incorrect Privilege Assignment

Published: Apr 09, 2025 | Modified: Apr 09, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Incorrect privilege assignment vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT AC-WPS-11ac series. If exploited, a remote attacker who can log in to the product may alter the settings without appropriate privileges.

Weakness

A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

Potential Mitigations

References