CVE-2025-67038 | Lantronix EDS5000 2.1.0.0R3 HTTP RPC Username os command injection

A vulnerability was found in Lantronix EDS5000 2.1.0.0R3. It has been declared as critical. Impacted is an unknown function of the component HTTP RPC Module. The manipulation of the argument Username results in os command injection.

This vulnerability is cataloged as CVE-2025-67038. The attack must originate from the local network. There is no exploit available.VulDB Recent EntriesRead More