VYPR
High severity7.5NVD Advisory· Published Feb 20, 2026· Updated Apr 15, 2026

CVE-2026-24455

CVE-2026-24455

Description

The embedded web interface of the device does not support HTTPS/TLS for authentication and uses HTTP Basic Authentication. Traffic is encoded but not encrypted, exposing user credentials to passive interception by attackers on the same network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.

CVE-2026-24455 · High · VYPR