CVE-2025-67041

CRITICAL

9.8

Description

An issue was discovered in Lantronix EDS3000PS 3.1.0.0R2. The host parameter of the TFTP client in the Filesystem Browser page is not properly sanitized. This can be exploited to escape from the original command and execute an arbitrary one with root privileges.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie3/11/2026

Derniere modification3/19/2026

Sourcenvd

Observations honeypot0

Produits affectes

lantronix:eds3008ps1nslantronix:eds3008ps1ns_firmwarelantronix:eds3016ps1nslantronix:eds3016ps1ns_firmware

Faiblesses (CWE)

CWE-78CWE-288CWE-620

References

http://eds3000ps.com(cve@mitre.org)

http://lantronix.com(cve@mitre.org)

https://www.cisa.gov/news-events/ics-advisories/icsa-26-069-02(cve@mitre.org)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.