VYPR
Vendor

ICT

Products
3
CVEs
3
Across products
4
Status
Private

Products

3

Recent CVEs

3
  • CVE-2024-29941HigMay 6, 2024
    risk 0.52cvss 8.0epss 0.00

    Insecure storage of the ICT MIFARE and DESFire encryption keys in the firmware binary allows malicious actors to create credentials for any site code and card number that is using the default ICT encryption.

  • CVE-2022-29734MedJun 2, 2022
    risk 0.35cvss 5.4epss 0.00

    A cross-site scripting (XSS) vulnerability in ICT Protege GX/WX v2.08 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter.

  • CVE-2022-29731MedJun 2, 2022
    risk 0.28cvss 4.3epss 0.00

    An access control issue in ICT Protege GX/WX 2.08 allows attackers to leak SHA1 password hashes of other users.