Authentication Bypass in WGS-80HPT-V2 and WGS-4215-8T2S by WGS Systems
CVE-2025-46275

9.3CRITICAL

Key Information:

Vendor: Planet Technology
Status: Wgs-804HPt-v2; Wgs-4215-8t2s
Vendor: CVE Published:; 24 April 2025

🔔 Create Planet Technology Vulnerability Alert

What is CVE-2025-46275?

A vulnerability exists in WGS-80HPT-V2 and WGS-4215-8T2S that allows attackers to exploit a lack of authentication controls. This weakness enables an unauthorized user to create an administrator account without requiring knowledge of valid credentials, significantly increasing the risk of unauthorized access and potential system compromise.

Affected Version(s)

WGS-4215-8T2S 0 <= 1.305b241115

WGS-804HPT-V2 0 <= 2.305b250121

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-1...

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2025
Vulnerability Reserved
Apr 22, 2025

Credit

Kev Breen of Immersive reported these vulnerabilities to CISA.