CVE-2025-67038: Lantronix EDS5000

What is CVE-2025-67038?

Lantronix EDS5000 contains a code injection vulnerability that could allow attackers to inject arbitrary OS commands into the username parameter. Injected commands are executed with root privileges.

CVSSawaiting NVD

Exploitation In the wild In CISA KEV

EPSS<1% · P37

Triage statusActive Exploit

ActionPatch immediately

CISA Known Exploited Vulnerability

Lantronix EDS5000 Code Injection Vulnerability

Added to KEV2026-06-23

Federal patch deadline2026-06-26

Known ransomware useUnknown

Affected product

Lantronix EDS5000

Remediation Steps

Identify all Lantronix EDS5000 devices in your environment, particularly those exposed to internet or remote access
Check CISA's Known Exploited Vulnerabilities catalog for vendor patch availability and guidance
Apply vendor-supplied security update as soon as available
Restrict network access to the affected device to trusted administrative networks only

References

Coverage on defend.network

Vulnerability Priority Report – Week 4 of June 2026 (June 22 – 28)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.