CVE-2025-9521

Name of the Vulnerable Software and Affected Versions Omada Controllers (affected versions not specified)

Description A security issue exists in Omada Controllers that allows an attacker possessing a valid session token to bypass secondary verification. This bypass enables the attacker to alter a user’s password without requiring proper confirmation, which weakens account security.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.