CVE-2025-46273 — AI Deep Analysis Summary

🚨 **Essence**: PLANET UNI-NMS-Lite has a critical trust management flaw. 📉 **Consequences**: Attackers can hijack admin accounts, leading to full system compromise and loss of network visibility.

🛡️ **Root Cause**: **CWE-798** (Use of Hard-coded Credentials). The software contains static passwords that never change, bypassing proper authentication logic.

🏢 **Affected**: **Planet Technology** products. Specifically, the **UNI-NMS-Lite** network management system used for monitoring PoE industrial devices. 📅 **Published**: April 24, 2025.

💀 **Impact**: **Full Admin Access**. CVSS Score is **Critical (9.8)**. Hackers gain High Confidentiality, Integrity, and Availability impact. They can control all connected wired/wireless devices. 📊

⚡ **Threshold**: **LOW**. Exploitation is **Network-based (AV:N)**, requires **No Privileges (PR:N)**, and **No User Interaction (UI:N)**. It is trivial to exploit remotely. 🎯

🔍 **Exploit Status**: **No Public PoC** listed in the data. However, given the nature of hard-coded credentials, wild exploitation is highly likely once discovered by threat actors. 🕵️‍♂️

🔎 **Self-Check**: Scan for **UNI-NMS-Lite** services. Check for default/hard-coded login endpoints. Verify if the default admin credentials are active and unchangeable. 🧪

🩹 **Fix Status**: **Patch Available**. Refer to CISA Advisory **ICSA-25-114-06**. Update to the latest secure version provided by Planet Technology immediately. 📦

🚧 **Workaround**: If patching is delayed, **isolate** the NMS server from the public internet. Restrict access to trusted management IPs only. Change network segmentation. 🧱

🔥 **Urgency**: **CRITICAL**. CVSS 9.8 + No Auth Required = Immediate Action. Prioritize patching or isolation to prevent unauthorized network control. ⏳