CVE-2025-48462

Successful exploitation of the vulnerability could allow an attacker to consume all available session slots and block other users from logging in, thereby preventing legitimate users from gaining access to the product.

CVSS v3 4.2 MEDIUM

4.2^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.5 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-061	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:advantech:wise-4060lan_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:advantech:wise-4060lan:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:advantech:wise-4050lan_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:advantech:wise-4050lan:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:advantech:wise-4010lan_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:advantech:wise-4010lan:-:*:*:*:*:*:*:*

History

09 Jul 2025, 15:03

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-06-24 03:15

Updated : 2025-07-09 15:03

NVD link : CVE-2025-48462

Mitre link : CVE-2025-48462

CVE.ORG link : CVE-2025-48462

JSON object : View

Products Affected

advantech

wise-4010lan_firmware
wise-4060lan
wise-4060lan_firmware
wise-4050lan_firmware
wise-4050lan
wise-4010lan

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

{"id": "CVE-2025-48462", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "5f57b9bf-260d-4433-bf07-b6a79e9bb7d4", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.2, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 0.5}]}, "published": "2025-06-24T03:15:33.753", "references": [{"url": "https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-061", "tags": ["Third Party Advisory"], "source": "5f57b9bf-260d-4433-bf07-b6a79e9bb7d4"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-770"}]}], "descriptions": [{"lang": "en", "value": "Successful exploitation of the vulnerability could allow an attacker to consume all available session slots and block other users from logging in, thereby preventing legitimate users from gaining access to the product."}, {"lang": "es", "value": "La explotaci\u00f3n exitosa de esta vulnerabilidad podr\u00eda permitir a un atacante consumir todos los espacios de sesi\u00f3n disponibles y bloquear el inicio de sesi\u00f3n de otros usuarios, impidiendo as\u00ed que los usuarios leg\u00edtimos obtengan acceso al producto."}], "lastModified": "2025-07-09T15:03:03.620", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:advantech:wise-4060lan_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40764D08-8173-4AF3-BB93-249D12A9D07D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:advantech:wise-4060lan:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E7DCE031-021A-47BC-B81C-1B0DCB9EB8F1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:advantech:wise-4050lan_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CFD6963-E219-48F1-8BDE-C3D9F6B2091B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:advantech:wise-4050lan:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "72DFF800-1684-4038-BB79-C679DCAF4105"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:advantech:wise-4010lan_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87715BBD-E9A9-404A-B11E-CFCE0E4CA409"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:advantech:wise-4010lan:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9241107A-6586-475F-AE13-C541F9AE8AE6"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "5f57b9bf-260d-4433-bf07-b6a79e9bb7d4"}