VYPR

frostmourne

by AutohomeCorp

CVEs (3)

  • CVE-2026-5563MedApr 5, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in AutohomeCorp frostmourne up to 1.0. Affected is the function httpTest of the file /api/monitor-api/alarm/previewData of the component Alarm Preview. The manipulation results in sql injection. The attack can be launched remotely. The exploit…

  • CVE-2026-5259MedApr 1, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was determined in AutohomeCorp frostmourne up to 1.0. The affected element is an unknown function of the file frostmourne-monitor/src/main/java/com/autohome/frostmourne/monitor/controller/AlarmController.java of the component Alarm Preview. Executing a…

  • CVE-2026-3968MedMar 12, 2026
    risk 0.41cvss 6.3epss 0.00

    A vulnerability has been found in AutohomeCorp frostmourne up to 1.0. This affects the function scriptEngine.eval of the file ExpressionRule.java of the component Oracle Nashorn JavaScript Engine. Such manipulation of the argument EXPRESSION leads to code injection. The attack…