JetKVM
by Jetkvm
Source repositories
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-32295 | Hig | 0.42 | 7.5 | 0.00 | Mar 17, 2026 | JetKVM before 0.5.4 does not rate limit login requests, enabling brute-force attempts to guess credentials. | ||
| CVE-2026-32294 | Med | 0.31 | 4.7 | 0.00 | Mar 17, 2026 | JetKVM prior to 0.5.4 does not verify the authenticity of downloaded firmware files. An attacker-in-the-middle or a compromised update server could modify the firmware and the corresponding SHA256 hash to pass verification. |
- risk 0.42cvss 7.5epss 0.00
JetKVM before 0.5.4 does not rate limit login requests, enabling brute-force attempts to guess credentials.
- risk 0.31cvss 4.7epss 0.00
JetKVM prior to 0.5.4 does not verify the authenticity of downloaded firmware files. An attacker-in-the-middle or a compromised update server could modify the firmware and the corresponding SHA256 hash to pass verification.