Vulnerability in Microsens Nmp Web+

CVE-2025-49152

The affected products contain JSON Web Tokens (JWT) that do not expire, which could allow an attacker to gain access to the system.

EPSS: 0.003 (55.6th percentile) — read the EPSS interpretation.

Affected products

Microsens Nmp Web+ — versions 0

Weakness classification (CWE)

CWE-613 — Insufficient Session Expiration

References

www.cisa.gov/news-events/ics-advisories/icsa-25-175-07