Session Management Vulnerability in Product Affected by Vendor
CVE-2025-48462

4.2MEDIUM

Key Information:

Vendor: Advantech
Status: Advantech Wireless Sensing And Equipment (wise)
Vendor: CVE Published:; 24 June 2025

What is CVE-2025-48462?

This vulnerability allows attackers to exhaust all available session slots, effectively blocking legitimate users from logging into the affected product. As a result, necessary access to services may be hindered, impacting user experience and potentially affecting business operations.

Affected Version(s)

Advantech Wireless Sensing and Equipment (WISE) A2.01 B00

References

https://www.csa.gov.sg/alerts-and-advisories/alerts/al-20...

CVSS V3.1

Score:

4.2

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 24, 2025
Vulnerability Reserved
May 22, 2025

Credit

Marc Heuse