VYPR

UD-LT2

by I-O DATA

CVEs (4)

  • CVE-2025-22450HigJan 22, 2025
    risk 0.49cvss 7.5epss 0.00

    Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specific ports.

  • CVE-2024-52564HigDec 5, 2024
    risk 0.49cvss 7.5epss 0.01

    Inclusion of undocumented features or chicken bits issue exists in UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier. A remote attacker may disable the firewall function of the affected products. As a result, an arbitrary OS command may be…

  • CVE-2025-20617HigJan 22, 2025
    risk 0.47cvss 7.2epss 0.01

    Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen…

  • CVE-2025-23237MedJan 22, 2025
    risk 0.43cvss 6.6epss 0.01

    Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed.