VYPR

Z4Pro+

by Zspace

CVEs (3)

  • CVE-2025-15133MedDec 28, 2025
    risk 0.41cvss 6.3epss 0.07

    A vulnerability was identified in ZSPACE Z4Pro+ 1.0.0440024. The impacted element is the function zfilev2_api_CloseSafe of the file /v2/file/safe/close of the component HTTP POST Request Handler. Such manipulation leads to command injection. It is possible to launch the attack…

  • CVE-2025-15132MedDec 28, 2025
    risk 0.41cvss 6.3epss 0.07

    A vulnerability was determined in ZSPACE Z4Pro+ 1.0.0440024. The affected element is the function zfilev2_api_open of the file /v2/file/safe/open of the component HTTP POST Request Handler. This manipulation causes command injection. It is possible to initiate the attack…

  • CVE-2025-15131MedDec 28, 2025
    risk 0.41cvss 6.3epss 0.07

    A vulnerability was found in ZSPACE Z4Pro+ 1.0.0440024. Impacted is the function zfilev2_api_SafeStatus of the file /v2/file/safe/status of the component HTTP POST Request Handler. The manipulation results in command injection. The attack may be performed from remote. The…