cbcvebase.

I-O Data Device Inc Ud-Lt1 vulnerabilities

3 known vulnerabilities affecting i-o_data_device_inc/ud-lt1.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
3
Severity breakdown
HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-45841P1MEDIUMCVSS 6.5Exploitedvfirmware Ver.2.1.9 and earlier2024-12-05
CVE-2024-45841 [MEDIUM] CWE-732 CVE-2024-45841: Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.9 and Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier. If an attacker with the guest account of the affected products accesses a specific file, the information containing credentials may be obtained.
nvd
CVE-2024-52564P2HIGHCVSS 7.5Exploitedvfirmware Ver.2.1.8 and earlier2024-12-05
CVE-2024-52564 [HIGH] CWE-1242 CVE-2024-52564: Inclusion of undocumented features or chicken bits issue exists in UD-LT1 firmware Ver.2.1.8 and ear Inclusion of undocumented features or chicken bits issue exists in UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier. A remote attacker may disable the firewall function of the affected products. As a result, an arbitrary OS command may be executed and/or configuration settings of the device may be altered.
nvd
CVE-2024-47133P2HIGHCVSS 7.2Exploitedvfirmware Ver.2.1.9 and earlier2024-12-05
CVE-2024-47133 [HIGH] CWE-78 CVE-2024-47133: UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier allow a remote au UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier allow a remote authenticated attacker with an administrative account to execute arbitrary OS commands.
nvd
I-O Data Device Inc Ud-Lt1 vulnerabilities | cvebase