Authentication Bypass in WGS-80HPT-V2 and WGS-4215-8T2S by WGS Systems
CVE-2025-46275
9.3CRITICAL
What is CVE-2025-46275?
A vulnerability exists in WGS-80HPT-V2 and WGS-4215-8T2S that allows attackers to exploit a lack of authentication controls. This weakness enables an unauthorized user to create an administrator account without requiring knowledge of valid credentials, significantly increasing the risk of unauthorized access and potential system compromise.
Affected Version(s)
WGS-4215-8T2S 0 <= 1.305b241115
WGS-804HPT-V2 0 <= 2.305b250121
References
CVSS V4
Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Kev Breen of Immersive reported these vulnerabilities to CISA.