VYPR
Vendor

CHOCO TEI

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2025-26689CriMar 31, 2025
    risk 0.64cvss 9.8epss 0.01

    Direct request ('Forced Browsing') issue exists in CHOCO TEI WATCHER mini (IB-MCT001) all versions. If a remote attacker sends a specially crafted HTTP request to the product, the product data may be obtained or deleted, and/or the product settings may be altered.

  • CVE-2025-25211CriMar 31, 2025
    risk 0.64cvss 9.8epss 0.01

    Weak password requirements issue exists in CHOCO TEI WATCHER mini (IB-MCT001) all versions. If this issue is exploited, a brute-force attack may allow an attacker unauthorized access and login.

  • CVE-2025-66357Dec 16, 2025
    risk 0.00cvss epss 0.00

    CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. When the Video Download feature is in a specific communication state, the product's resources may be consumed abnormally.

  • CVE-2025-59479Dec 16, 2025
    risk 0.00cvss epss 0.00

    CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper restriction of rendered UI layers or frames. If a user clicks on content on a malicious web page while logged into the product, unintended operations may be performed on the product.

  • CVE-2025-61976Dec 16, 2025
    risk 0.00cvss epss 0.00

    CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. If a remote attacker sends a specially crafted request to the Video Download interface, the system may become unresponsive.