CVE-2025-67041

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Lantronix EDS3000PS version 3.1.0.0R2

Description The host parameter of the TFTP client within the Filesystem Browser page does not undergo proper sanitization. This allows for command escape and the execution of arbitrary commands with root privileges. The vulnerable component is the TFTP client.

Recommendations Apply input validation and sanitization to the host parameter of the TFTP client in the Filesystem Browser page.

Fix

OS Command Injection

Authentication Bypass Using an Alternate Path or Channel

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-620CWE-78CWE-288

Related Identifiers

CVE-2025-67041

Affected Products

Eds3008Ps1Ns Firmware

Eds3016Ps1Ns Firmware

CVE-2025-67041

Weakness Enumeration

Related Identifiers

Affected Products

References · 6