CVE-2025-28371 – EnGenius ENH500 AP Access Control Bypass Vulnerability

CVE ID : CVE-2025-28371

Published : May 19, 2025, 2:15 p.m. | 52 minutes ago

Description : EnGenius ENH500 AP 2T2R V3.0 FW3.7.22 is vulnerable to Incorrect Access Control via the password change function. The device fails to validate the current password, allowing an attacker to submit a password change request with an invalid current password and set a new password.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…