VYPR
Vendor

LPAR2RRD

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2014-4981CriFeb 17, 2020
    risk 0.64cvss 9.8epss 0.06

    LPAR2RRD in 3.5 and earlier allows remote attackers to execute arbitrary commands due to insufficient input sanitization of the web GUI parameters.

  • CVE-2014-4982CriJan 10, 2020
    risk 0.64cvss 9.8epss 0.05

    LPAR2RRD ≤ 4.53 and ≤ 3.5 has arbitrary command injection on the application server.

  • CVE-2025-54769HigJul 29, 2025
    risk 0.60cvss 8.8epss 0.03

    An authenticated, read-only user can upload a file and perform a directory traversal to have the uploaded file placed in a location of their choosing. This can be used to overwrite existing PERL modules within the application to achieve remote code execution (RCE) by an…

  • CVE-2025-54768MedJul 29, 2025
    risk 0.35cvss 5.3epss 0.04

    An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration, exposing sensitive information.