{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-14T22:27:44.527","vulnerabilities":[{"cve":{"id":"CVE-2025-26856","sourceIdentifier":"vultures@jpcert.or.jp","published":"2025-02-20T06:15:21.673","lastModified":"2025-02-20T06:15:21.673","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary OS command may be executed. This vulnerability was reported on a different screen operation from CVE-2025-20617."},{"lang":"es","value":"La neutralización inadecuada de los elementos especiales utilizados en un problema de comando OS ('inyección de comando de os') existe en el firmware UD-LT2 ver.1.00.008_SE y anterior. Si un atacante inicia sesión en el producto afectado con una cuenta administrativa y manipula las solicitudes de una determinada operación de pantalla, se puede ejecutar un comando Arbitrary OS. Esta vulnerabilidad se informó en una operación de pantalla diferente de CVE-2025-20617."}],"metrics":{"cvssMetricV30":[{"source":"vultures@jpcert.or.jp","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0\/AV:N\/AC:L\/PR:H\/UI:N\/S:U\/C:H\/I:H\/A:H","baseScore":7.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.2,"impactScore":5.9}]},"weaknesses":[{"source":"vultures@jpcert.or.jp","type":"Secondary","description":[{"lang":"en","value":"CWE-78"}]}],"references":[{"url":"https:\/\/jvn.jp\/en\/jp\/JVN15293958\/","source":"vultures@jpcert.or.jp"},{"url":"https:\/\/www.iodata.jp\/support\/information\/2025\/01_ud-lt2\/","source":"vultures@jpcert.or.jp"}]}}]}