Vulnerability in Gztozed Zlt_m30s
CVE-2025-15083
A vulnerability was determined in TOZED ZLT M30s up to 1.47. The affected element is an unknown function of the component UART Interface. Executing manipulation can lead to on-chip debug and test interface with improper access control. The…
EPSS: 0.000 (7.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 2.0 (Low). Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N.
Affected products
- Gztozed Zlt_m30s
- Gztozed Zlt_m30s_firmware
- Tozed Zlt M30s — versions 1.0, 1.1, 1.2
Weakness classification (CWE)
References
- VDB-338411 | TOZED ZLT M30s UART on-chip debug and test interface with improper access control (Third Party Advisory, VDB Entry, vdb-entry)
- VDB-338411 | CTI Indicators (IOB, IOC) (signature, Permissions Required, permissions-required, VDB Entry)
- Submit #707974 | TOZED ZLT M30s 1.47 Improper Access Control in Debug Interface (Third Party Advisory, VDB Entry, third-party-advisory)
- cna@vuldb.com (Exploit, Third Party Advisory, exploit)
Frequently asked questions
- What is CVE-2025-15083?
- CVE-2025-15083 is a low-severity vulnerability in Gztozed Zlt_m30s, classified under CWE-1191. CVSS score: 2.0/10. Published 2025-12-25.
- How severe is CVE-2025-15083?
- Low severity. CVSS v3 base score is 2.0 out of 10.