VYPR

Lan Kontroler V3.5

by Tinycontrol

CVEs (2)

  • CVE-2025-11500HigMar 16, 2026
    risk 0.57cvss epss 0.00

    Tinycontrol devices such as tcPDU and LAN Controllers LK3.5, LK3.9 and LK4 have two separate authentication mechanisms - one solely for interface management and one for protecting all other server resources. When the latter is turned off (which is a default setting), an…

  • CVE-2025-15587HigMar 16, 2026
    risk 0.56cvss epss 0.00

    Tinycontrol devices such as tcPDU and LAN Controllers LK3.5, LK3.9 and LK4 allow a low privileged user to read an administrator's password by directly accessing a specific resource inaccessible via a graphical interface. This issue has been fixed in firmware versions: 1.36 (for…