GCVE - cpe:2.3:a:i-o_data_device,_inc.:ud-lt1:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:i-o_data_device,_inc.:ud-lt1:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	I O Data Device, Inc. (`778e22e9-0a62-59c4-949b-59149240692d`)
Product	Ud Lt1 (`79951f6b-6feb-5f82-b21e-0ba7c893f4f2`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-52564`	vulnerable	2026-06-03 14:57:30.618201	Details available HIGH (7.5) Inclusion of undocumented features or chicken bits issue exists in UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier. A remote attacker may disable the firewall function of the affected products. As a result, an arbitrary OS command may be executed and/or configuration settings of the device may be altered. Published: 2024-12-05T09:41:39.909Z Updated: 2025-01-29T04:55:28.107Z Open on db.gcve.eu Reference links https://www.iodata.jp/support/information/2024/11_ud-lt1/ https://jvn.jp/en/jp/JVN46615026/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-47133`	vulnerable	2026-06-03 14:57:00.743093	Details available HIGH (7.2) UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier allow a remote authenticated attacker with an administrative account to execute arbitrary OS commands. Published: 2024-12-05T09:40:48.474Z Updated: 2024-12-18T06:33:27.182Z Open on db.gcve.eu Reference links https://www.iodata.jp/support/information/2024/11_ud-lt1/ https://jvn.jp/en/jp/JVN46615026/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-45841`	vulnerable	2026-06-03 14:56:59.133726	Details available MEDIUM (6.5) Incorrect permission assignment for critical resource issue exists in UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier. If an attacker with the guest account of the affected products accesses a specific file, the information containing credentials may be obtained. Published: 2024-12-05T09:39:36.181Z Updated: 2024-12-18T06:32:37.504Z Open on db.gcve.eu Reference links https://www.iodata.jp/support/information/2024/11_ud-lt1/ https://jvn.jp/en/jp/JVN46615026/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.