CVE-2025-28229: Incorrect access control in Orban OPTIMOD 5950 Firmware v1.0.0.2 and System v2.2.15 allows attackers to bypass authentication and gain...

Description

Incorrect access control in Orban OPTIMOD 5950 Firmware v1.0.0.2 and System v2.2.15 allows attackers to bypass authentication and gain Administrator privileges.

Classification

CVE ID: CVE-2025-28229

Affected Products

Vendor: n/a

Product: n/a

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.07% (probability of being exploited)

EPSS Percentile: 22.02% (scored less or equal to compared to others)

EPSS Date: 2025-05-14 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-28229
https://github.com/shiky8/my--cve-vulnerability-research/tree/main/CVE-2025-28229

Timeline

2025-04-18 15:40:24 UTC
CVE

Incorrect access control in Orban OPTIMOD 5950 Firmware v1.0.0.2 and System v2.2.15 allows attackers to bypass authentication and gain...