Lucene search
K

4 matches found

OSV
OSV
added 2025/05/19 2:15 p.m.3 views

CVE-2025-28371

EnGenius ENH500 AP 2T2R V3.0 FW3.7.22 is vulnerable to Incorrect Access Control via the password change function. The device fails to validate the current password, allowing an attacker to submit a password change request with an invalid current password and set a new password...

6.5CVSS5.8AI score0.004EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/05/19 12:0 a.m.8 views

CVE-2025-28371

EnGenius ENH500 AP 2T2R V3.0 FW3.7.22 is vulnerable to Incorrect Access Control via the password change function. The device fails to validate the current password, allowing an attacker to submit a password change request with an invalid current password and set a new password...

6.6AI score0.004EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/05/19 12:0 a.m.11 views

CVE-2025-28371

EnGenius ENH500 AP 2T2R V3.0 FW3.7.22 is vulnerable to Incorrect Access Control via the password change function. The device fails to validate the current password, allowing an attacker to submit a password change request with an invalid current password and set a new password...

0.004EPSS
Exploits1References3
CVE
CVE
added 2025/05/19 12:0 a.m.34 views

CVE-2025-28371

CVE-2025-28371 affects EnGenius ENH500 AP 2T2R, version 3.0 FW3.7.22. The issue is an Incorrect Access Control in the password change function: the device does not validate the current password, allowing a request with an invalid current password to set a new password. Documented impact in CVSS s...

6.5CVSS7.2AI score0.004EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder