VYPR
Vendor

Inaba

Products
6
CVEs
9
Across products
9
Status
Private

Products

6

Recent CVEs

9
  • CVE-2025-27797CriApr 9, 2025
    risk 0.64cvss 9.8epss 0.01

    OS command injection vulnerability in the specific service exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS command may be executed by a remote attacker who can log in to the product.

  • CVE-2025-26689CriMar 31, 2025
    risk 0.64cvss 9.8epss 0.01

    Direct request ('Forced Browsing') issue exists in CHOCO TEI WATCHER mini (IB-MCT001) all versions. If a remote attacker sends a specially crafted HTTP request to the product, the product data may be obtained or deleted, and/or the product settings may be altered.

  • CVE-2025-25211CriMar 31, 2025
    risk 0.64cvss 9.8epss 0.01

    Weak password requirements issue exists in CHOCO TEI WATCHER mini (IB-MCT001) all versions. If this issue is exploited, a brute-force attack may allow an attacker unauthorized access and login.

  • CVE-2025-25053HigApr 9, 2025
    risk 0.57cvss 8.8epss 0.01

    OS command injection vulnerability in the WEB UI (the setting page) exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, an arbitrary OS command may be executed by a remote attacker who can log in to the product.

  • CVE-2025-29870HigApr 9, 2025
    risk 0.49cvss 7.5epss 0.01

    Missing authentication for critical function vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If exploited, a remote unauthenticated attacker may obtain the product configuration information including authentication information.

  • CVE-2025-24517HigMar 31, 2025
    risk 0.49cvss 7.5epss 0.01

    Use of client-side authentication issue exists in CHOCO TEI WATCHER mini (IB-MCT001) all versions. If this issue is exploited, a remote attacker may obtain the product login password without authentication.

  • CVE-2023-31196HigJun 13, 2023
    risk 0.49cvss 7.5epss 0.01

    Missing authentication for critical function in Wi-Fi AP UNIT allows a remote unauthenticated attacker to obtain sensitive information of the affected products. Affected products and versions are as follows: AC-PD-WAPU v1.05_B04 and earlier, AC-PD-WAPUM v1.05_B04 and earlier,…

  • CVE-2023-31198HigJun 13, 2023
    risk 0.47cvss 7.2epss 0.01

    OS command injection vulnerability exists in Wi-Fi AP UNIT allows. If this vulnerability is exploited, a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command. Affected products and versions are as follows: AC-PD-WAPU v1.05_B04 and…

  • CVE-2025-25213MedApr 9, 2025
    risk 0.42cvss 6.5epss 0.00

    Improper restriction of rendered UI layers or frames issue exists in Wi-Fi AP UNIT 'AC-WPS-11ac series'. If a user views and clicks on the content on the malicious page while logged in, unintended operations may be performed.