OS Command Injection Affecting Wi-Fi AP UNIT AC-WPS-11ac Series by Inaba
CVE-2025-27797

9.8CRITICAL

Key Information:

Vendor: Inaba Denki Sangyo Co., Ltd.
Status: Ac-WPs-11ac; Ac-WPs-11ac-p; Ac-WPsm-11ac; Ac-WPsm-11ac-p
Vendor: CVE Published:; 9 April 2025

🔔 Create Inaba Denki Sangyo Co., Ltd. Vulnerability Alert

What is CVE-2025-27797?

An OS command injection vulnerability has been identified in the Wi-Fi AP UNIT AC-WPS-11ac series by Inaba. This flaw allows a remote attacker, who has legitimate access to the device, to execute arbitrary operating system commands. Successful exploitation of this vulnerability could enable unauthorized access to critical system functions, resulting in a potential compromise of network security. Users are advised to apply security patches and follow best practices to minimize risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

AC-PD-WPS-11ac v2.0.03P and earlier

AC-PD-WPS-11ac-P v2.0.03P and earlier

AC-WPS-11ac v2.0.03P and earlier

References

https://www.inaba.co.jp/abaniact/news/security_20250404.pdf

https://jvn.jp/en/vu/JVNVU93925742/

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Mar 24, 2025

JSON

Inaba Denki Sangyo Co., Ltd.

What is CVE-2025-27797?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.