Undocumented Features Flaw in UD-LT2 Firmware by I-O DATA
CVE-2025-22450

Currently unrated

Key Information:

Vendor: I-o Data Device, Inc.
Status: Ud-lt2
Vendor: CVE Published:; 22 January 2025

🔔 Create I-o Data Device, Inc. Vulnerability Alert

What is CVE-2025-22450?

An undocumented features vulnerability has been identified in the UD-LT2 firmware, specifically in versions up to 1.00.008_SE. This flaw may allow remote attackers to manipulate the device's LAN-side firewall settings, potentially leading to unauthorized access and exploitation through the opening of specific ports.

Affected Version(s)

UD-LT2 firmware Ver.1.00.008_SE and earlier

References

https://www.iodata.jp/support/information/2025/01_ud-lt2/

https://jvn.jp/en/jp/JVN15293958/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2025
Vulnerability Reserved
Jan 16, 2025