CVE-2024-41889
Published
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT
Description
Multiple Pimax products accept WebSocket connections from unintended endpoints. If this vulnerability is exploited, arbitrary code may be executed by a remote unauthenticated attacker.
Provide interactive interfaces for Pimax products (such as HMD, controllers, base stations, etc.) to users
GitHub