VYPR

My CVE Vulnerability Research

by Shiky8

Source repositories

CVEs (12)

  • CVE-2025-28242CriApr 18, 2025
    risk 0.64cvss 9.8epss 0.02

    Improper session management in the /login_ok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack.

  • CVE-2025-28238CriApr 18, 2025
    risk 0.64cvss 9.8epss 0.00

    Improper session management in Elber REBLE310 Firmware v5.5.1.R , Equipment Model: REBLE310/RX10/4ASI allows attackers to execute a session hijacking attack.

  • CVE-2025-28236CriApr 18, 2025
    risk 0.64cvss 9.8epss 0.00

    Nautel VX Series transmitters VX SW v6.4.0 and below was discovered to contain a remote code execution (RCE) vulnerability in the firmware update process. This vulnerability allows attackers to execute arbitrary code via supplying a crafted update package to the…

  • CVE-2025-28233CriApr 18, 2025
    risk 0.59cvss 9.1epss 0.00

    Incorrect access control in BW Broadcast TX600 (14980), TX300 (32990) (31448), TX150, TX1000, TX30, and TX50 Hardware Version: 2, Software Version: 1.6.0, Control Version: 1.0, AIO Firmware Version: 1.7 allows attackers to access log files and extract session identifiers to…

  • CVE-2025-28231CriApr 18, 2025
    risk 0.59cvss 9.1epss 0.00

    Incorrect access control in Itel Electronics IP Stream v1.7.0.6 allows unauthorized attackers to execute arbitrary commands with Administrator privileges.

  • CVE-2025-43953HigSep 22, 2025
    risk 0.57cvss 8.8epss 0.07

    In 2wcom IP-4c 2.16, the web interface allows admin and manager users to execute arbitrary code as root via a ping or traceroute field on the TCP/IP screen.

  • CVE-2025-28237HigApr 18, 2025
    risk 0.57cvss 8.8epss 0.00

    An issue in WorldCast Systems ECRESO FM/DAB/TV Transmitter v1.10.1 allows authenticated attackers to escalate privileges via a crafted JSON payload.

  • CVE-2025-22961HigFeb 13, 2025
    risk 0.52cvss 8.0epss 0.00

    A critical information disclosure vulnerability exists in the web-based management interface of GatesAir Maxiva UAXT, VAXT transmitters due to Incorrect Access Control (CWE-284). Unauthenticated attackers can directly access sensitive database backup files (snapshot_users.db)…

  • CVE-2025-22960HigFeb 13, 2025
    risk 0.52cvss 8.0epss 0.00

    A session hijacking vulnerability exists in the web-based management interface of GatesAir Maxiva UAXT, VAXT transmitters. Unauthenticated attackers can access exposed log files (/logs/debug/xteLog*), potentially revealing sensitive session-related information such as session…

  • CVE-2025-57440HigSep 22, 2025
    risk 0.49cvss 7.5epss 0.00

    The Blackmagic ATEM Mini Pro 2.7 exposes an undocumented Telnet service on TCP port 9993, which accepts unauthenticated plaintext commands for controlling streaming, recording, formatting storage devices, and system reboot. This interface, referred to as the "ATEM Ethernet…

  • CVE-2025-28235HigApr 18, 2025
    risk 0.49cvss 7.5epss 0.00

    An information disclosure vulnerability in the component /socket.io/1/websocket/ of Soundcraft Ui Series Model(s) Ui12 and Ui16 Firmware v1.0.7x and v1.0.5x allows attackers to access Administrator credentials in plaintext.

  • CVE-2025-22962HigFeb 13, 2025
    risk 0.47cvss 7.2epss 0.01

    A critical remote code execution (RCE) vulnerability exists in the web-based management interface of GatesAir Maxiva UAXT, VAXT transmitters when debugging mode is enabled. An attacker with a valid session ID (sess_id) can send specially crafted POST requests to the /json…