Privilege Escalation in Wi-Fi Access Point by Inaba Technologies
CVE-2025-23407

4.3MEDIUM

Key Information:

Vendor: Inaba Denki Sangyo Co., Ltd.
Status: Ac-WPs-11ac; Ac-WPs-11ac-p; Ac-WPsm-11ac; Ac-WPsm-11ac-p
Vendor: CVE Published:; 9 April 2025

🔔 Create Inaba Denki Sangyo Co., Ltd. Vulnerability Alert

What is CVE-2025-23407?

An incorrect privilege assignment vulnerability has been identified in the WEB UI of the Wi-Fi Access Point AC-WPS-11ac series by Inaba Technologies. This flaw enables a remote attacker, who can successfully log into the device, to manipulate crucial configuration settings without the necessary permissions, potentially compromising the integrity and security of the network.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

AC-PD-WPS-11ac v2.0.03P and earlier

AC-PD-WPS-11ac-P v2.0.03P and earlier

AC-WPS-11ac v2.0.03P and earlier

References

https://www.inaba.co.jp/abaniact/news/security_20250404.pdf

https://jvn.jp/en/vu/JVNVU93925742/

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Mar 24, 2025

JSON

Inaba Denki Sangyo Co., Ltd.

What is CVE-2025-23407?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.