High severity7.8NVD Advisory· Published Aug 1, 2025· Updated Apr 15, 2026
CVE-2025-52361
CVE-2025-52361
Description
Insecure permissions in the script /etc/init.d/lighttpd in AK-Nord USB-Server-LXL Firmware v0.0.16 Build 2023-03-13 allows a locally authenticated low-privilege user to execute arbitrary commands with root privilege via editing this script which is executed with root-privileges on any interaction and on every system boot.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = v0.0.16 Build 2023-03-13
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.