VYPR
Vendor

Airpointer

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2025-4636HigMay 30, 2025
    risk 0.51cvss 7.8epss 0.00

    Due to excessive privileges granted to the web user running the airpointer web platform, a malicious actor that gains control of the this user would be able to privilege escalate to the root user

  • CVE-2025-4633MedMay 30, 2025
    risk 0.42cvss 6.5epss 0.00

    Default credentials were present in the web portal for Airpointer 2.4.107-2, allowing an unauthenticated malicious actor to log in via the web portal

  • CVE-2025-4634MedMay 30, 2025
    risk 0.27cvss 4.1epss 0.00

    The web portal on airpointer 2.4.107-2 was vulnerable local file inclusion. A malicious user with administrative privileges in the web portal would be able to manipulate requests to view files on the filesystem