VYPR
Vendor

4ipnet

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2024-24300CriFeb 14, 2024
    risk 0.64cvss 9.8epss 0.01

    4ipnet EAP-767 v3.42.00 is vulnerable to Incorrect Access Control. The device uses the same set of credentials, regardless of how many times a user logs in, the content of the cookie remains unchanged.

  • CVE-2024-24301HigFeb 14, 2024
    risk 0.57cvss 8.8epss 0.02

    Command Injection vulnerability discovered in 4ipnet EAP-767 device v3.42.00 within the web interface of the device allows attackers with valid credentials to inject arbitrary shell commands to be executed by the device with root privileges.