VYPR

IoT Gateway

by CONPROSYS

CVEs (3)

  • CVE-2023-27917HigApr 11, 2023
    risk 0.57cvss 8.8epss 0.02

    OS command injection vulnerability in CONPROSYS IoT Gateway products allows a remote authenticated attacker who can access Network Maintenance page to execute arbitrary OS commands with a root privilege. The affected products and versions are as follows: M2M Gateway with the…

  • CVE-2023-27389HigApr 11, 2023
    risk 0.47cvss 7.2epss 0.01

    Inadequate encryption strength vulnerability in CONPROSYS IoT Gateway products allows a remote authenticated attacker with an administrative privilege to apply a specially crafted Firmware update file, alter the information, cause a denial-of-service (DoS) condition, and/or…

  • CVE-2023-23575MedApr 11, 2023
    risk 0.28cvss 4.3epss 0.01

    Improper access control vulnerability in CONPROSYS IoT Gateway products allows a remote authenticated attacker to bypass access restriction and access Network Maintenance page, which may result in obtaining the network information of the product. The affected products and…