What is the CVSS score of CVE-2025-48461?

CVE-2025-48461 has a CVSS 3.1 base score of 5.0 (Medium). CVSS vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L. EPSS exploitation probability: 0.0%.

Which versions of Wise 4010lan Firmware are affected by CVE-2025-48461?

CVE-2025-48461 presents moderate security risk rated CVSS 5.0. Exploitation could compromise the security of affected deployments.

How to fix or mitigate CVE-2025-48461?

Within 30 days: Identify affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

Wise 4010lan Firmware CVE-2025-48461

EUVD-2025-18991 MEDIUM

Predictable from Observable State (CWE-341)

2025-06-24 5f57b9bf-260d-4433-bf07-b6a79e9bb7d4

Information Disclosure Wise 4010lan Firmware Wise 4050lan Firmware Wise 4060lan Firmware

5.0

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

Adjacent

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

Lifecycle Timeline

EUVD ID Assigned

Mar 15, 2026 - 22:36 euvd

EUVD-2025-18991

Analysis Generated

Mar 15, 2026 - 22:36 vuln.today

CVE Published

Jun 24, 2025 - 03:15 nvd

MEDIUM 5.0

DescriptionNVD

Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the session cookies are predictable, potentially allowing the attackers to gain root, admin or user access and reset passwords.

AnalysisAI

A remote code execution vulnerability (CVSS 5.0) that allows an unauthenticated attacker. Remediation should follow standard vulnerability management procedures.

Technical ContextAI

Vulnerability type: remote code execution.

RemediationAI

Monitor vendor channels for patch availability.

CVE-2025-48461 vulnerability details – vuln.today

Back