4 matches found
CVE-2024-45841
Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier. If an attacker with the guest account of the affected products accesses a specific file, the information containing credentials may be obtained...
CVE-2024-47133
CVE-2024-47133 affects I-O DATA Device UD-LT1 and UD-LT1/EX. A logged-in user with an administrative account can execute arbitrary OS commands due to OS command injection in the firmware. Root cause: inadequate input handling in the affected firmware, enabling command execution from privileged co...
CVE-2024-45841
Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier. If an attacker with the guest account of the affected products accesses a specific file, the information containing credentials may be obtained...
VulnCheck KEV: CVE-2024-47133
UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier allow a remote authenticated attacker with an administrative account to execute arbitrary OS commands...