CVE-2025-53508
CVE-2025-53508
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.6EPSS 1.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Aug 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Multiple products provided by iND Co.,Ltd contain an OS command injection vulnerability. If exploited, an arbitrary OS command may be executed and sensitive information may be obtained. As for the details of affected product names and versions, refer to the information under [Product Status].
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
iND Co.,Ltd · F2L Assist-SS-AiND Co.,Ltd · F2L Assist-SS-EiND Co.,Ltd · HL320-DLS (for module MC7330)iND Co.,Ltd · HL320-DLS (for module MC7700)iND Co.,Ltd · HL330-DLS (for module MC7330)iND Co.,Ltd · HL330-DLS (for module MC7700)iND Co.,Ltd · L2X AssistiND Co.,Ltd · L2X Assist-RS-AiND Co.,Ltd · L2X Assist-RS-EiND Co.,Ltd · LM-100iND Co.,Ltd · LM-200 (for module AMP570)iND Co.,Ltd · LM-200 (for module EC25-J)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →