THREAT OPS › CVEs › CVE-2025-67038
CVE-2025-67038 — Lantronix EDS5000 Code Injection Vulnerability
Lantronix EDS5000 contains a code injection vulnerability that could allow attackers to inject arbitrary OS commands into the username parameter. Injected commands are executed with root privileges.
Vulnerability details
- Affected productsEDS5000
- KEV remediation due2026-06-26