VYPR

ResourceXpress

by QED ResourceXpress

CVEs (2)

  • CVE-2020-28898MedApr 15, 2021
    risk 0.35cvss 5.3epss 0.01

    In QED ResourceXpress through 4.9k, a large numeric or alphanumeric value submitted in specific URL parameters causes a server error in script execution due to insufficient input validation.

  • CVE-2020-25746MedNov 17, 2020
    risk 0.30cvss 4.6epss 0.00

    QED ResourceXpress Qubi3 devices before 1.40.9 could allow a local attacker (with physical access to the device) to obtain sensitive information via the debug interface (keystrokes over a USB cable), aka wireless password visibility.