CVE-2025-23237 – “UD-LT2 OS Command Injection Vulnerability”

1月 22, 2025
7:16 am

CVE ID : CVE-2025-23237

Published : Jan. 22, 2025, 6:15 a.m. | 1 hour, 1 minute ago

Description : Improper neutralization of special elements used in an OS command (‘OS Command Injection’) issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed.

Severity: 6.6 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-23237 – “UD-LT2 OS Command Injection Vulnerability”

Elvescore.io

Recent Posts

CVE-2024-12879 – “WordPress WPBot Pro Unauthorized Data Modification – Arbitrary Chat Response Injection”

CVE-2025-20617 – Cisco UD-LT2 OS Command Injection Vulnerability

CVE-2025-22450 – WiSoka UD-LT2 Firewall Inclusion Vulnerability

CVE-2025-23237 – “UD-LT2 OS Command Injection Vulnerability”

CVE-2024-11218 – Podman/Buildah Compose Privilege Escalation Vulnerability

CVE-2024-13584 – WordPress Picture Gallery Stored Cross-Site Scripting (XSS)

CVE-2025-23237 – “UD-LT2 OS Command Injection Vulnerability”

CVE-2025-23237 – “UD-LT2 OS Command Injection Vulnerability”