VYPR

Universal Gateway Firmware

by Mbs Solutions

CVEs (7)

  • CVE-2026-35085HigJun 3, 2026
    risk 0.57cvss 8.8epss 0.00

    A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root.

  • CVE-2026-35083HigJun 3, 2026
    risk 0.57cvss 8.8epss 0.00

    A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.

  • CVE-2026-35081HigJun 3, 2026
    risk 0.53cvss 8.1epss 0.00

    The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-supplied input.

  • CVE-2026-35080HigJun 3, 2026
    risk 0.53cvss 8.1epss 0.00

    The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

  • CVE-2026-35079HigJun 3, 2026
    risk 0.53cvss 8.1epss 0.00

    The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

  • CVE-2026-35077HigJun 3, 2026
    risk 0.53cvss 8.1epss 0.00

    The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.

  • CVE-2026-35076HigJun 3, 2026
    risk 0.53cvss 8.1epss 0.00

    The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input.