Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-32294

JetKVM prior to 0.5.4 does not verify the authenticity of downloaded firmware files. An attacker-in-the-middle or a compromised update server could modify the firmware and the corresponding SHA256 hash to pass verification.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.1%
CVSS Severity
CVSS v3 Score 4.7
Products affected by CVE-2026-32294
  • Jetkvm » Kvm » Version: 0.3.8
    cpe:2.3:a:jetkvm:kvm:0.3.8
  • Jetkvm » Kvm » Version: 0.3.9
    cpe:2.3:a:jetkvm:kvm:0.3.9
  • Jetkvm » Kvm » Version: 0.4.0
    cpe:2.3:a:jetkvm:kvm:0.4.0
  • Jetkvm » Kvm » Version: 0.4.1
    cpe:2.3:a:jetkvm:kvm:0.4.1
  • Jetkvm » Kvm » Version: 0.4.2
    cpe:2.3:a:jetkvm:kvm:0.4.2
  • Jetkvm » Kvm » Version: 0.4.3
    cpe:2.3:a:jetkvm:kvm:0.4.3
  • Jetkvm » Kvm » Version: 0.4.4
    cpe:2.3:a:jetkvm:kvm:0.4.4
  • Jetkvm » Kvm » Version: 0.4.5
    cpe:2.3:a:jetkvm:kvm:0.4.5
  • Jetkvm » Kvm » Version: 0.4.6
    cpe:2.3:a:jetkvm:kvm:0.4.6
  • Jetkvm » Kvm » Version: 0.4.7
    cpe:2.3:a:jetkvm:kvm:0.4.7
  • Jetkvm » Kvm » Version: 0.4.8
    cpe:2.3:a:jetkvm:kvm:0.4.8
  • Jetkvm » Kvm » Version: 0.4.9
    cpe:2.3:a:jetkvm:kvm:0.4.9
  • Jetkvm » Kvm » Version: 0.5.0
    cpe:2.3:a:jetkvm:kvm:0.5.0
  • Jetkvm » Kvm » Version: 0.5.1
    cpe:2.3:a:jetkvm:kvm:0.5.1
  • Jetkvm » Kvm » Version: 0.5.2
    cpe:2.3:a:jetkvm:kvm:0.5.2
  • Jetkvm » Kvm » Version: 0.5.3
    cpe:2.3:a:jetkvm:kvm:0.5.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved