Known Vulnerabilities for products from Mygardyn
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Mygardyn".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-32662 json | Development and test API endpoints are present that mirror production functionality. | Not Provided | 2026-04-03 | 2026-04-22 |
| CVE-2026-32646 json | A specific administrative endpoint is accessible without proper authentication, exposing device management functions. | Not Provided | 2026-04-03 | 2026-04-22 |
| CVE-2026-28767 json | A specific administrative endpoint notifications is accessible without proper authentication. | Not Provided | 2026-04-03 | 2026-04-22 |
| CVE-2026-28766 json | A specific endpoint exposes all user account information for registered Gardyn users without requiring authentication. | Not Provided | 2026-04-03 | 2026-04-22 |
| CVE-2026-25197 json | A specific endpoint allows authenticated users to pivot to other user profiles by modifying the id number in the API call. | Not Provided | 2026-04-03 | 2026-04-22 |