VYPR

Main Web Interface

by Certvde

CVEs (2)

  • CVE-2025-41684HigJul 23, 2025
    risk 0.57cvss 8.8epss 0.01

    An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of improper sanitizing of user input in the Main Web Interface (endpoint tls_iotgen_setting).

  • CVE-2025-41683HigJul 23, 2025
    risk 0.57cvss 8.8epss 0.01

    An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of improper sanitizing of user input in the Main Web Interface (endpoint event_mail_test).