CVE-2025-3927 — Digigram's PYKO-OUT audio-over-IP (AoIP) web-server does not require a password by default, allowing any attacker with the target IP address to connect and compromise the device, potentially pivot — CVE Database · The Intelligence Room