VYPR
Vendor

EZCast

Products
2
CVEs
8
Across products
8
Status
Private

Products

2

Recent CVEs

8
  • CVE-2025-13955CriDec 10, 2025
    risk 0.60cvss epss 0.00

    Predictable default Wi-Fi Password in Access Point functionality in EZCast Pro II before version 1.17478.177 allows attackers in Wi-Fi range to gain access to the dongle by calculating the default password from observable device identifiers

  • CVE-2025-13954CriDec 10, 2025
    risk 0.60cvss epss 0.00

    Hard-coded cryptographic keys in Admin UI of EZCast Pro II before version 1.17478.177 allows attackers to bypass authorization checks and gain full access to the admin UI

  • CVE-2026-24344HigJan 27, 2026
    risk 0.47cvss epss 0.00

    Multiple Buffer Overflows in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to cause a program crash and potential remote code execution

  • CVE-2019-12305MedOct 16, 2020
    risk 0.42cvss 6.5epss 0.00

    In EZCast Pro II, the administrator password md5 hash is provided upon a web request. This hash can be cracked to access the administration panel of the device.

  • CVE-2026-24348Jan 27, 2026
    risk 0.00cvss epss 0.00

    Multiple cross-site scripting vulnerabilities in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to execute arbitrary JavaScript code in the browser of other Admin UI users.

  • CVE-2026-24347Jan 27, 2026
    risk 0.00cvss epss 0.00

    Improper input validation in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to manipulate files in the /tmp directory

  • CVE-2026-24346Jan 27, 2026
    risk 0.00cvss epss 0.00

    Use of well-known default credentials in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to access protected areas in the web application

  • CVE-2026-24345Jan 27, 2026
    risk 0.00cvss epss 0.00

    Cross-Site Request Forgery in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to bypass authorization checks and gain full access to the admin UI