26 matches found
CVE-2025-23237
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed...
EUVD-2025-4626
Malicious code in bioql PyPI...
EUVD-2025-2178
Malicious code in bioql PyPI...
EUVD-2025-3154
Malicious code in bioql PyPI...
EUVD-2025-2776
Malicious code in bioql PyPI...
CVE-2025-26856
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary ...
CVE-2025-26856
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary ...
CVE-2025-26856
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary ...
CVE-2025-26856
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary ...
CVE-2025-26856
CVE-2025-26856 affects I-O Data UD-LT2 firmware (Ver. 1.00.008_SE and earlier). The issue is OS Command Injection caused by improper neutralization of a special element during a specific screen operation, allowing an administrator to trigger arbitrary OS commands after authenticating with admin c...
CVE-2025-20617
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary ...
CVE-2025-22450
Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specific ports...
CVE-2025-23237
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed...
CVE-2025-20617
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary ...
CVE-2025-22450
Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specific ports...
CVE-2025-23237
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed...
CVE-2025-23237
CVE-2025-23237 affects I-O DATA UD-LT2 devices running firmware 1.00.008_SE and earlier. The vulnerability is an OS Command Injection caused by improper neutralization of special elements used in an OS command. When an administrator logs in to the device CLI, an arbitrary OS command could be exec...
CVE-2025-23237
Improper neutralization of special elements used in an OS command 'OS Command Injection' issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. If a user logs in to CLI of the affected product, an arbitrary OS command may be executed...
CVE-2025-22450
The CVE-2025-22450 issue affects I-O Data UD-LT2 devices running firmware 1.00.008_SE and earlier. Described as inclusion of undocumented features, it may allow a remote attacker to disable the LAN-side firewall and open specific ports. Vulnerability is CVE-2025-22450 and is listed among multiple...
CVE-2025-22450
Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specific ports...