Eg500Mk2 A11001 000101
Approved changes feed: RSS · Atom
cpe:2.3:a:welotec:eg500mk2-a11001-000101:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Welotec (c86a2534-c80d-51ac-bf3c-f772404a4820) |
|---|---|
| Product | Eg500Mk2 A11001 000101 (71fe3fa0-1761-56ec-af9f-a624e6793a3f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-41702 |
vulnerable | 2026-06-03 15:01:15.620107 |
egOS WebGUI Hard-Coded JWT Secret Enables Authentication Bypass
CRITICAL (9.8)
The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An unauthenticated remote attacker can generate valid HS256 tokens and bypass authentication/authorization due to the use of hard-coded cryptographic key.
Published: 2025-08-26T06:10:57.464Z
Updated: 2025-08-26T19:39:00.393Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.