ByteOS Network

WGS-804HPT-V2

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-46275

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-9.3||CRITICAL

EPSS-0.11% / 29.38%

7 Day CHG+0.01%

Published-24 Apr, 2025 | 22:58

Updated-29 Apr, 2025 | 13:52

Planet Technology Network Products Missing Authentication for Critical Function

WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create an administrator account without knowing any existing credentials.

Vendor-Planet Technology

Product-WGS-804HPT-V2 WGS-4215-8T2S

CWE ID-CWE-306

Missing Authentication for Critical Function

CVE-2025-46272

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-9.3||CRITICAL

EPSS-4.21% / 88.30%

7 Day CHG+0.25%

Published-24 Apr, 2025 | 22:56

Updated-29 Apr, 2025 | 13:52

Planet Technology Network Products OS Command Injection

WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to execute OS commands on the host system.

Vendor-Planet Technology

Product-WGS-804HPT-V2 WGS-4215-8T2S

CWE ID-CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')