CVE-2025-22450
CVE-2025-22450
In short
The UD-LT2 firmware contains hidden features that allow a remote attacker to disable the firewall protecting internal networks and open specific ports, potentially exposing connected devices to unauthorized access.
Technical detail
CWE-1242 describes exposure of undocumented features in UD-LT2 Ver.1.00.008_SE and earlier, permitting remote attackers to disable LAN-side firewall protection and expose internal ports without authentication. The vulnerability enables network segmentation bypass and unauthorized access to protected resources.
Summary generated and translated by AI from the official description.
Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specific ports.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected products
I-O DATA DEVICE, INC. · UD-LT2Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →