Vulnerability in Microsens Nmp Web+

CVE-2025-49151

The affected products could allow an unauthenticated attacker to generate forged JSON Web Tokens (JWT) to bypass authentication.

EPSS: 0.006 (69.6th percentile) — read the EPSS interpretation.

Affected products

Microsens Nmp Web+ — versions 0

Weakness classification (CWE)

CWE-547 — Use of Hard-coded, Security-relevant Constants

References

www.cisa.gov/news-events/ics-advisories/icsa-25-175-07