VYPR

JetKVM

by Jetkvm

Source repositories

CVEs (2)

  • CVE-2026-32295HigMar 17, 2026
    risk 0.42cvss 7.5epss 0.00

    JetKVM before 0.5.4 does not rate limit login requests, enabling brute-force attempts to guess credentials.

  • CVE-2026-32294MedMar 17, 2026
    risk 0.31cvss 4.7epss 0.00

    JetKVM prior to 0.5.4 does not verify the authenticity of downloaded firmware files. An attacker-in-the-middle or a compromised update server could modify the firmware and the corresponding SHA256 hash to pass verification.