Primary

Context

Sipeed NanoKVM Unauthenticated Wi-Fi Configuration Endpoint Vulnerability

Vulnerability

A vulnerability in Sipeed NanoKVM versions prior to 2.3.1 allows an unauthenticated attacker with network access to exploit a Wi-Fi configuration endpoint that lacks proper security checks. This exploitation could lead to unauthorized changes in the saved Wi-Fi network settings or be used to craft requests that exhaust system memory, causing the KVM process to terminate.

Impact

Exploitation of this vulnerability could result in unauthorized modification of Wi-Fi settings or a denial-of-service condition by terminating the KVM process.

Remediation

Users can update to Sipeed NanoKVM version 2.3.1 or later, where this vulnerability has been addressed.

Added: Mar 17, 2026, 6:21 PM

Updated: Mar 17, 2026, 6:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.9

remediation

0.0

relevance

4.0

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.9

remediation

0.0

relevance

4.0

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sipeed NanoKVM Unauthenticated Wi-Fi Configuration Endpoint Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating