VYPR

Zlt M30s

by Gztozed

CVEs (4)

  • CVE-2025-14126HigDec 6, 2025
    risk 0.57cvss 8.8epss 0.00

    A vulnerability has been found in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. Affected is an unknown function of the component Web Interface. Such manipulation leads to hard-coded credentials. The attack needs to be initiated within the local network. The exploit has been…

  • CVE-2025-14105MedDec 5, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was determined in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. This impacts an unknown function of the file /reqproc/proc_post of the component Web Interface. Executing manipulation of the argument goformId with the input REBOOT_DEVICE can lead to denial of…

  • CVE-2025-15083LowDec 25, 2025
    risk 0.13cvss 2.0epss 0.00

    A vulnerability was determined in TOZED ZLT M30s up to 1.47. The affected element is an unknown function of the component UART Interface. Executing manipulation can lead to on-chip debug and test interface with improper access control. The physical device can be targeted for the…

  • CVE-2025-15082Dec 25, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in TOZED ZLT M30s up to 1.47. Impacted is an unknown function of the file /reqproc/proc_post of the component Web Management Interface. Performing manipulation of the argument goformId results in information disclosure. It is possible to initiate the…