Known Vulnerabilities
CVE-2025-0457
The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote attackers with regular privileges to inject and execute arbitrary OS commands.
HIGH
CVSS 8.8
Published Jan 16, 2025
CVE-2025-0456
The airPASS from NetVision Information has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access the specific administrative functionality to retrieve * all accounts and passwords.
CRITICAL
CVSS 9.8
Published Jan 16, 2025
CVE-2025-0455
The airPASS from NetVision Information has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
CRITICAL
CVSS 9.8
Published Jan 16, 2025