Petlibro

6 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-3660 MEDIUM This Month

Petlibro versions up to 1.7.31 contains a vulnerability that allows attackers to access other users' pet data by exploiting missing ownership verification (CVSS 6.5).

Authentication Bypass Petlibro
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-3654 MEDIUM This Month

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an information disclosure vulnerability that allows unauthorized access to device hardware information by exploiting insecure API endpoints. [CVSS 5.3 MEDIUM]

Information Disclosure Petlibro
NVD
CVSS 3.1
5.3
EPSS
0.1%
CVE-2025-3653 HIGH This Week

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an improper access control vulnerability that allows unauthorized device manipulation by accepting arbitrary serial numbers without ownership verification. [CVSS 7.3 HIGH]

Authentication Bypass Petlibro
NVD
CVSS 3.1
7.3
EPSS
0.1%
CVE-2025-3652 MEDIUM This Month

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an information disclosure vulnerability that allows unauthorized access to private audio recordings by exploiting sequential audio IDs and insecure assignment endpoints. [CVSS 5.3 MEDIUM]

Information Disclosure Petlibro
NVD
CVSS 3.1
5.3
EPSS
0.1%
CVE-2025-3646 HIGH This Week

Petlibro versions up to 1.7.31 is affected by missing authentication for critical function (CVSS 7.3).

Authentication Bypass Petlibro
NVD
CVSS 3.1
7.3
EPSS
0.1%
CVE-2025-15115 MEDIUM This Month

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an authentication bypass vulnerability that allows unauthenticated attackers to access any user account by exploiting OAuth token validation flaws in the social login system. [CVSS 6.5 MEDIUM]

Aws Authentication Bypass Petlibro
NVD
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-3660
EPSS 0% CVSS 6.5
MEDIUM This Month

Petlibro versions up to 1.7.31 contains a vulnerability that allows attackers to access other users' pet data by exploiting missing ownership verification (CVSS 6.5).

Authentication Bypass Petlibro
NVD
CVE-2025-3654
EPSS 0% CVSS 5.3
MEDIUM This Month

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an information disclosure vulnerability that allows unauthorized access to device hardware information by exploiting insecure API endpoints. [CVSS 5.3 MEDIUM]

Information Disclosure Petlibro
NVD
CVE-2025-3653
EPSS 0% CVSS 7.3
HIGH This Week

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an improper access control vulnerability that allows unauthorized device manipulation by accepting arbitrary serial numbers without ownership verification. [CVSS 7.3 HIGH]

Authentication Bypass Petlibro
NVD
CVE-2025-3652
EPSS 0% CVSS 5.3
MEDIUM This Month

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an information disclosure vulnerability that allows unauthorized access to private audio recordings by exploiting sequential audio IDs and insecure assignment endpoints. [CVSS 5.3 MEDIUM]

Information Disclosure Petlibro
NVD
CVE-2025-3646
EPSS 0% CVSS 7.3
HIGH This Week

Petlibro versions up to 1.7.31 is affected by missing authentication for critical function (CVSS 7.3).

Authentication Bypass Petlibro
NVD
CVE-2025-15115
EPSS 0% CVSS 6.5
MEDIUM This Month

Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an authentication bypass vulnerability that allows unauthenticated attackers to access any user account by exploiting OAuth token validation flaws in the social login system. [CVSS 6.5 MEDIUM]

Aws Authentication Bypass Petlibro
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy