VYPR

iEdge 100

by Infinxt

CVEs (3)

  • CVE-2025-26055MedApr 1, 2025
    risk 0.42cvss 6.5epss 0.01

    An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module, specifically in the tracertVal parameter of the Tracert function.

  • CVE-2025-26056MedApr 1, 2025
    risk 0.35cvss 5.4epss 0.01

    A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot module "MTR" functionality. The vulnerability is due to improper validation of user-supplied input in the mtrIp parameter. An attacker can exploit this flaw to execute arbitrary…

  • CVE-2025-26054MedApr 1, 2025
    risk 0.35cvss 5.4epss 0.00

    Infinxt iEdge 100 2.1.32 is vulnerable to Cross Site Scripting (XSS) via the "Description" field during LAN configuration.