CVE-2025-27797 — AI Deep Analysis Summary

🚨 **Essence**: OS Command Injection in Inaba Denki Sangyo Wi-Fi AP UNIT. <br>💥 **Consequences**: Attackers can execute arbitrary OS commands remotely. Total system compromise is possible.

🛡️ **Root Cause**: **CWE-78** (OS Command Injection). <br>🔍 **Flaw**: Specific services fail to properly sanitize user input before passing it to the OS shell.

📦 **Affected**: Inaba Denki Sangyo Co., Ltd. <br>📱 **Product**: AC-WPS-11ac (Wi-Fi AP UNIT). <br>📉 **Version**: v2.0.03P and **prior** versions.

👑 **Privileges**: Remote attackers gain full control. <br>📂 **Data**: High impact on Confidentiality, Integrity, and Availability (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

⚡ **Threshold**: **LOW**. <br>🔓 **Auth**: No authentication required (PR:N). <br>🌐 **Network**: Network accessible (AV:N). <br>👤 **UI**: No user interaction needed (UI:N).

💣 **Public Exp?**: **No**. The `pocs` list is empty in the provided data. <br>⚠️ **Risk**: Despite no public PoC, the low exploitation complexity makes it highly dangerous.

🔍 **Self-Check**: Scan for Inaba Denki Sangyo AC-WPS-11ac devices. <br>🏷️ **Fingerprint**: Look for firmware version **v2.0.03P** or older. <br>📡 **Service**: Check for exposed management interfaces.

🩹 **Official Fix**: Yes. <br>📄 **Source**: Vendor advisory released on 2025-04-04 (PDF link provided). <br>✅ **Action**: Update firmware to the patched version immediately.

🚧 **No Patch?**: Isolate the device from the public internet. <br>🔒 **Mitigation**: Restrict access to trusted internal networks only. <br>👀 **Monitor**: Log all management interface requests for anomalies.

🔥 **Urgency**: **CRITICAL**. <br>📅 **Published**: 2025-04-09. <br>🚀 **Priority**: Patch immediately. High CVSS score + No Auth needed = Immediate threat.