What is CVE-2025-22450?

CVE-2025-22450 is a high-severity vulnerability in I-o Data Device, Inc. Ud-lt2, classified under CWE-1242. CVSS score: 7.5/10. Published 2025-01-22.

How severe is CVE-2025-22450?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in I-o Data Device, Inc. Ud-lt2

CVE-2025-22450

Inclusion of undocumented features issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. A remote attacker may disable the LAN-side firewall function of the affected products, and open specific ports.

EPSS: 0.002 (47.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N.

Affected products

I-o Data Device, Inc. Ud-lt2 — versions firmware Ver.1.00.008_SE and earlier

Weakness classification (CWE)

CWE-1242

References

www.iodata.jp/support/information/2025/01_ud-lt2/
jvn.jp/en/jp/JVN15293958/

Frequently asked questions

What is CVE-2025-22450?: CVE-2025-22450 is a high-severity vulnerability in I-o Data Device, Inc. Ud-lt2, classified under CWE-1242. CVSS score: 7.5/10. Published 2025-01-22.
How severe is CVE-2025-22450?: High severity. CVSS v3 base score is 7.5 out of 10.