Auth bypass in Nec Corporation Gb1200pe

CVE-2025-0355

Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earlier, GB1200PE Ver.1.3.0 and earlier, WG2600HP4 Ver.1.4.2 and e…

Vulnerability class: Broken Authentication

EPSS: 0.005 (40.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2025-0355?
CVE-2025-0355 is a high-severity vulnerability in Nec Corporation Gb1200pe, classified under Missing Authentication for Critical Function. CVSS score: 7.5/10. Published 2025-01-15.
How severe is CVE-2025-0355?
High severity. CVSS v3 base score is 7.5 out of 10.