Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary OS command may be executed. This vulnerability was reported on a different screen operation from CVE-2025-26856.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
I-O Data Device UD-LT2 操作系统命令注入漏洞
Vulnerability Description
I-O Data Device UD-LT2是日本艾欧资讯(I-O Data Device)公司的一款无线路由器。 I-O Data Device UD-LT2 1.00.008_SE及之前版本存在操作系统命令注入漏洞,该漏洞源于存在特殊元素的不当中和,导致攻击者可执行任意操作系统命令。
CVSS Information
N/A
Vulnerability Type
N/A