Severity by source
AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
Lifecycle Timeline
3DescriptionCVE.org
Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality.
AnalysisAI
Bypass vulnerability in device management channels that allows unauthenticated attackers on adjacent networks to compromise service confidentiality and cause minor availability impact. The vulnerability affects device management implementations across multiple vendors (specific products require vendor advisories to identify). While no active exploitation in the wild has been confirmed in public KEV databases at time of analysis, the 7.1 CVSS score and high confidentiality impact warrant immediate attention for organizations managing devices on trusted networks.
Technical ContextAI
This vulnerability exploits improper authentication mechanisms (CWE-287: Improper Authentication) in device management channels—likely referring to protocols such as UPnP, DHCP, SNMP, or proprietary device provisioning interfaces. The attack vector being 'Adjacent Network' (AV:A) indicates the attacker must be on the same local network segment, broadcast domain, or have layer-2 access. The root cause is insufficient or missing authentication validation when processing management commands, allowing an unauthenticated actor to bypass access controls. CWE-287 encompasses missing or weak credential verification, potentially including: missing authentication checks before processing sensitive operations, reliance on implicit trust in local network contexts without explicit verification, or failure to validate management protocol messages. The 'No User Interaction' requirement (UI:N) and 'No Privileges Required' (PR:N) indicate the attack requires no social engineering or prior compromise—direct exploitation is possible.
RemediationAI
Without vendor-specific patch information in the provided data: 1) Immediate Workarounds: Isolate device management traffic on dedicated management VLANs; implement strict firewall rules limiting management channel access to authorized administrator subnets only; disable remote management features if not required; monitor device management protocols (UPnP, DHCP, proprietary channels) for unauthorized access attempts. 2) Patch Strategy: Monitor vendor security pages for CVE-2025-48909 patches; establish a testing/deployment timeline for management plane updates separate from production services to minimize downtime; prioritize devices with sensitive data or control functions. 3) Detection: Deploy network IDS/IPS signatures for unauthenticated device management requests; enable authentication logging and alerts on management interfaces; monitor for lateral movement from untrusted network segments toward management channels. 4) Long-term: Implement zero-trust network access for device management; require multi-factor authentication for management interfaces; encrypt management traffic (TLS/DTLS); conduct protocol-level security review of custom management implementations.
Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability
Permission management vulnerability in the PMS module. Rated critical severity (CVSS 9.8), this vulnerability is remotel
Vulnerability of access permissions not being strictly verified in the APPWidget module.Successful exploitation of this
Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this
API permission management vulnerability in the Fwk-Display module.Successful exploitation of this vulnerability may caus
Vulnerability of defects introduced in the design process in the HiviewTunner module. Rated critical severity (CVSS 9.8)
The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability may affect some Super
Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Rated critical severity (CVSS 9.8), this vulner
Vulnerability of commands from the modem being intercepted in the atcmdserver module. Rated critical severity (CVSS 9.8)
Some smartphones have configuration issues. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitab
Some smartphones have the out-of-bounds write vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is r
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause syst
Same weakness CWE-287 – Improper Authentication
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-17066