VYPR

VizAir

by Radiometrics

CVEs (3)

  • CVE-2025-61956Nov 4, 2025
    risk 0.00cvss epss 0.01

    Radiometrics VizAir is vulnerable to a lack of authentication mechanisms for critical functions, such as admin access and API requests. Attackers can modify configurations without authentication, potentially manipulating active runway settings and misleading air traffic control…

  • CVE-2025-54863Nov 4, 2025
    risk 0.00cvss epss 0.01

    Radiometrics VizAir is vulnerable to exposure of the system's REST API key through a publicly accessible configuration file. This allows attackers to remotely alter weather data and configurations, automate attacks against multiple instances, and extract sensitive meteorological…

  • CVE-2025-61945Nov 4, 2025
    risk 0.00cvss epss 0.01

    Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential…