← Back

Ehang Io

ehang-io

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Nps
nps
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-40494
1Ehang Io
1Nps
Apr 17, 2025
Oct 6, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
NPS before v0.26.10 was discovered to contain an authentication bypass vulnerability via constantly generating and sending the Auth key and Timestamp parameters.
CVE-2019-15119
1Ehang Io
1Nps
Apr 17, 2025
Aug 16, 2019
N/A· v4
5.5 MEDIUM· v3
5.8 MEDIUM· v2
lib/install/install.go in cnlh nps through 0.23.2 uses 0777 permissions for /usr/local/bin/nps and/or /usr/bin/nps, leading to a file overwrite by a local user.