CVE-2025-27934
CVE-2025-27934
In short
A Wi-Fi access point (AC-WPS-11ac series) exposes authentication credentials to anyone on the network without requiring login. An attacker can remotely steal the device's security information, compromising access control.
Technical detail
CWE-497 vulnerability in AC-WPS-11ac Wi-Fi AP allows unauthenticated remote information disclosure of authentication credentials. Attack vector is network-based with no authentication requirement; successful exploitation grants attacker access to sensitive credential material, enabling unauthorized device control or network compromise.
Summary generated and translated by AI from the official description.
Information disclosure of authentication information in the specific service vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote unauthenticated attacker may obtain the product authentication information.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
Inaba Denki Sangyo Co., Ltd. · AC-PD-WPS-11acInaba Denki Sangyo Co., Ltd. · AC-PD-WPS-11ac-PInaba Denki Sangyo Co., Ltd. · AC-WPS-11acInaba Denki Sangyo Co., Ltd. · AC-WPS-11ac-PInaba Denki Sangyo Co., Ltd. · AC-WPSM-11acInaba Denki Sangyo Co., Ltd. · AC-WPSM-11ac-PWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →