CVE-2025-49151

Name of the Vulnerable Software and Affected Versions: MICROSENS NMP Web+ versions prior to 3.3.0

Description: The issue allows an unauthenticated attacker to generate forged JSON Web Tokens (JWT) to bypass authentication. This could potentially lead to full system control. Organizations worldwide remain at risk.

Recommendations: For versions prior to 3.3.0, update to version 3.3.0 to fix the issue. As a temporary workaround, consider restricting access to sensitive areas of the system to minimize the risk of exploitation. Avoid using the JWT token in authentication processes until the issue is resolved.