{"vulnerability": "cve-2025-67038", "sightings": [{"uuid": "f986f301-7c28-4f87-904a-052414013228", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-069-02", "content": "", "creation_timestamp": "2026-03-10T11:00:00.000000Z"}, {"uuid": "a8d1ffa6-b5ac-418d-bbb1-301458cda544", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/49b900ec-633f-4111-a614-2dc8b0b77752", "content": "", "creation_timestamp": "2026-03-11T11:00:58.256308Z"}, {"uuid": "0bfb1179-1c79-4e32-aa6a-e86f774ce428", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/64a89941-4f82-4d29-92b5-c82e90d75581", "content": "", "creation_timestamp": "2026-06-23T18:00:02.348917Z"}, {"uuid": "85211c82-5d0b-4804-96c0-07b930b30274", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3moxyrhdofq2w", "content": "\ud83d\uded1 CVE-2025-67038\nLantronix EDS5000\nKEV \u2705\nTL;DR: Lantronix EDS5000 contains a code injection vulnerability that could allow attackers to inject arbitrary OS comm\u2026\nhttps://cvesentinel.com/report/CVE-2025-67038?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-06-23T18:11:08.238262Z"}, {"uuid": "32bec605-56c5-4260-a39f-dd10120ab5d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6817247", "content": "2026-06-23: [CVE-2025-67038] Lantronix EDS5000 Code Injection VulnerabilityLantronix EDS5000 contains a code injection vulnerability that could allow attackers to inject arbitrary OS commands into the username parameter. Injected commands are executed with root privileges.\ncisakev", "creation_timestamp": "2026-06-23T18:43:03.974852Z"}, {"uuid": "4629e273-f94c-468f-9def-554b54eb4128", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/8e8a4f05-9e1b-4d1f-b0d9-81ac83a41432", "content": "", "creation_timestamp": "2026-06-23T19:00:19.730346Z"}, {"uuid": "396dd29f-09b8-489e-a850-b1f6b6f70a7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116800974631729730", "content": "CISA has updated the KEV catalogue:\n-  CVE-2026-34908: Ubiquiti UniFi OS Improper Access Control Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34908\n-  CVE-2026-34909: Ubiquiti UniFi OS Path Traversal Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34909\n-  CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-34910\n-  CVE-2025-67038: Lantronix EDS5000 Code Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2025-67038 #CISA #infosec #vulnerability", "creation_timestamp": "2026-06-23T19:03:54.948475Z"}, {"uuid": "dec86f0c-083e-42eb-b593-ba56879dec7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/control-systems-cisa-ics-security-advisories-av26-241", "content": "", "creation_timestamp": "2026-06-23T13:23:46.000000Z"}, {"uuid": "1d4bc8ae-263e-48bb-b82b-c94fb2118860", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mp2jtiqaem2t", "content": "CISA warns of active exploitation of CVE-2025-67038 in Lantronix EDS5000 devices and requires FCEB agencies to patch by June 26, 2026.\n", "creation_timestamp": "2026-06-24T18:21:50.357083Z"}, {"uuid": "1edcb317-188c-44a5-a002-b874c95976af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mp2ke4vlip2i", "content": "For the Boardroom: A critical unauthenticated code injection flaw (CVE-2025-67038) in Lantronix EDS5000 servers is under active exploitation. Read the full C-SUITE threat advisory on mitigating this operational risk. Ping the word 'ok' mike@thecybermind.co to upgrade your intel.\u2026", "creation_timestamp": "2026-06-24T18:31:08.622931Z"}, {"uuid": "d9bdc175-7964-44f9-a629-093cf2695926", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mp2kjb7ddq42", "content": "CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited TheHackerNews CISA says CVE-2025-67038 in Lantronix EDS5000 devices is under active exploitation and urges federal agencies to...\n\n#Security #News\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-24T18:34:24.069572Z"}, {"uuid": "8456089f-f692-4e32-9675-ab0676234dcb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://thehackernews.com/2026/06/cisa-warns-critical-lantronix-eds5000.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 26, 2026.\n\nThe vulnerability in question is CVE-2025-67038 (CVSS score: 9.8), a code injection flaw that could result in the execution", "creation_timestamp": "2026-06-24T19:00:49.912745Z"}, {"uuid": "c95ddfcd-def5-4a9e-9a74-192af15b3c1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/bitnewsbot.bsky.social/post/3mp2nvzr5n62o", "content": "A critical command injection flaw (CVE-2025-67038) in Lantronix EDS5000 devices is being actively exploited, allowing attackers to execute arbitrary commands [\u2026]", "creation_timestamp": "2026-06-24T19:34:50.897252Z"}, {"uuid": "63291cbb-fa8d-4245-9b52-ebf1bdeff29f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mp2ykuptxg2e", "content": "CISA says CVE-2025-67038 in Lantronix EDS5000 devices is actively exploited, enabling command injection and elevated code execution. UniFi OS flaws are also being chained for root-level compromise. #Lantronix #UniFiOS #CVE2025", "creation_timestamp": "2026-06-24T22:45:27.229497Z"}, {"uuid": "7b7b500b-41f7-4c8f-8ded-9beea48849e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/newssecia.bsky.social/post/3mp34apu6ef2n", "content": "\ud83e\udd16 CVE-2025-67038 (CVSS 9.8): Critical code injection in Lantronix EDS5000 actively exploited. CISA KEV added. OT/industrial devices at risk, patch urgently.\n\nhttps://thehackernews.com/2026/06/cisa-warns-critical-lantronix-eds5000.html", "creation_timestamp": "2026-06-24T23:51:20.840961Z"}, {"uuid": "b8c2472c-5685-4aa8-b068-6fbec01d4afd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://thehackernews.com/2026/06/cisa-warns-critical-lantronix-eds5000.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 26, 2026.\n\nThe vulnerability in question is CVE-2025-67038 (CVSS score: 9.8), a code injection flaw that could result in the execution", "creation_timestamp": "2026-06-25T01:00:41.468724Z"}, {"uuid": "30afc9a6-918c-41b1-866f-d7a52b3f3b42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mp4dyr6agk2s", "content": "CVE-2025-67038 is being exploited against Lantronix EDS5000 device servers, enabling unauthenticated root command injection and potential network takeover.\n", "creation_timestamp": "2026-06-25T11:42:44.108822Z"}, {"uuid": "9f778fd5-e2ec-43da-9ddf-f85c1dea3675", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mp4ezc5qxbx2", "content": "Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning The exploited flaw, CVE-2025-67038, is one of the vulnerabilities disclosed in April as part of the BRIDGE:BREAK r...\n\n#ICS/OT #Vulnerabilities #exploited #ICS #Lantronix #OT\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-25T12:01:01.581994Z"}, {"uuid": "8989f8fc-8baf-4891-a27c-1195f7a057e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://infosec.exchange/users/edwardk/statuses/116810657862908202", "content": "CISA warns of max-severity Ubiquiti flaws exploited in attacks\u2028Source URL: https://www.bleepingcomputer.com/news/security/cisa-warns-of-max-severity-ubiquiti-flaws-exploited-in-attacks/\u2028CISA added actively exploited vulnerabilities affecting Ubiquiti UniFi OS and Lantronix EDS5000 serial-to-Ethernet servers to its Known Exploited Vulnerabilities catalogue and, under BOD 26-04, directed U.S. federal agencies to apply available updates or vendor-recommended mitigations within three days. The Ubiquiti flaws include an access-control bypass, directory/path traversal and improper input validation that could enable command execution, with researchers showing the issues can be chained for full remote code execution on vulnerable UniFi OS devices. The Lantronix issue, CVE-2025-67038, is a critical root-level command-injection flaw in the HTTP RPC module, making urgent patching, exposure review and compensating controls appropriate for organizations running these products.", "creation_timestamp": "2026-06-25T12:06:29.293676Z"}, {"uuid": "21e33a51-16a0-4256-a290-cad18d9e2e94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://threatintel.cc/2026/06/25/cisa-warns-of-maxseverity-ubiquiti.html", "content": "Source URL: www.bleepingcomputer.com/news/secu…\u2028CISA added actively exploited vulnerabilities affecting Ubiquiti UniFi OS and Lantronix EDS5000 serial-to-Ethernet servers to its Known Exploited Vulnerabilities catalogue and, under BOD 26-04, directed U.S. federal agencies to apply available updates or vendor-recommended mitigations within three days. The Ubiquiti flaws include an access-control bypass, directory/path traversal and improper input validation that could enable command execution, with researchers showing the issues can be chained for full remote code execution on vulnerable UniFi OS devices. The Lantronix issue, CVE-2025-67038, is a critical root-level command-injection flaw in the HTTP RPC module, making urgent patching, exposure review and compensating controls appropriate for organizations running these products.", "creation_timestamp": "2026-06-25T13:00:44.600118Z"}, {"uuid": "95803221-bbf9-40a6-ad1d-d3017899f8f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmg6y224", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:40.831921Z"}, {"uuid": "f18ddb1c-61f1-409d-9dde-bebdb317745d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgiqk24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:41.714845Z"}, {"uuid": "a9034738-68c5-4e7e-b019-fe151e8229a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgjps24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:42.561899Z"}, {"uuid": "cacf17fb-f497-4c97-9fab-6c03aade8563", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgkp224", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:43.377487Z"}, {"uuid": "058aefda-0fef-4f4c-ad34-d885b0f6e664", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgloc24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:44.243589Z"}, {"uuid": "34166454-c1a3-4e3b-8b48-c3e8f179926d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgmnk24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:45.072260Z"}, {"uuid": "f1383a1f-a816-4d60-977f-915104aa92b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgnms24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:45.913088Z"}, {"uuid": "7a973e22-7061-4209-b981-ace03f7e474c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgnmt24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:46.742546Z"}, {"uuid": "45af30e6-99c3-4ec1-9d4e-a6130423a12f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mp4jsmgnmu24", "content": "5/ \u26a0\ufe0f CISA: CVE-2025-67038 actively exploited in Lantronix EDS5000 devices. CVSS 9.8. OS command injection runs as root. Fed agencies patch by June 26. That's TOMORROW. Don't snooze on this.", "creation_timestamp": "2026-06-25T13:26:47.581867Z"}, {"uuid": "160198e3-8fac-4cd3-b636-c69f9fe3cc6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mp4tak7oo223", "content": "CISA says CVE-2025-67038 is actively exploited in Lantronix EDS5000 serial-to-IP devices, where unauthenticated command injection can grant root access, enabling takeover, lateral movement, and data theft. #CVE2025 #Lantronix #OTSecurity", "creation_timestamp": "2026-06-25T16:15:30.522298Z"}, {"uuid": "30f351fe-b31f-44ce-b5d2-9abb697846e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116811816664558410", "content": "\ud83d\udcf0 CISA Mandates Urgent Patching for Actively Exploited Flaws in Lantronix and Ubiquiti Devices\n\ud83d\udea8 CISA KEV ALERT: Critical flaws in Lantronix EDS5000 (CVE-2025-67038) & Ubiquiti UniFi OS (CVE-2026-34908) are actively exploited. Unauthenticated RCE with root access possible. Patch immediately! #CyberSecurity #Vulnerability #PatchNow\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/cisa-adds-critical-lantronix-and-ubiquiti-flaws-to-kev-catalog/?utm_sourc\u2026", "creation_timestamp": "2026-06-25T17:01:17.840956Z"}, {"uuid": "d3a066f6-fd5d-491e-b9ec-aaf239740a7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mp4vsuypfp2r", "content": "\ud83d\udea8 CISA KEV ALERT: Critical flaws in Lantronix EDS5000 (CVE-2025-67038) & Ubiquiti UniFi OS (CVE-2026-34908) are actively exploited. Unauthenticated RCE with root access possible. Patch immediately! #CyberSecurity #Vulnerability #PatchNow\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-06-25T17:01:33.902549Z"}, {"uuid": "f8fa8f04-7934-4fe3-a139-7480bc444410", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mp57sm6r6u2c", "content": "Lantronix EDS5000 Series: CISA warns CVE-2025-67038 is being actively exploited. Defenders should patch now and verify EDS5000 is updated before June 26, 2026. #Cybersecurity #Vulnerability #ThreatIntel\n\nSource: https://thehackernews.com/2026/06/cisa-warns-critical-lantronix-eds5000.html", "creation_timestamp": "2026-06-25T20:00:22.370337Z"}, {"uuid": "3996b192-2c06-43d3-9552-6954ed254b7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://threatintel.cc/2026/06/25/cisa-warns-of-maxseverity-ubiquiti.html", "content": "Source URL: www.bleepingcomputer.com/news/secu…\u2028CISA added actively exploited vulnerabilities affecting Ubiquiti UniFi OS and Lantronix EDS5000 serial-to-Ethernet servers to its Known Exploited Vulnerabilities catalogue and, under BOD 26-04, directed U.S. federal agencies to apply available updates or vendor-recommended mitigations within three days. The Ubiquiti flaws include an access-control bypass, directory/path traversal and improper input validation that could enable command execution, with researchers showing the issues can be chained for full remote code execution on vulnerable UniFi OS devices. The Lantronix issue, CVE-2025-67038, is a critical root-level command-injection flaw in the HTTP RPC module, making urgent patching, exposure review and compensating controls appropriate for organizations running these products.", "creation_timestamp": "2026-06-26T01:00:42.237651Z"}, {"uuid": "20044d6c-db08-4bc8-b152-f4f97de0c501", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mp6q3zd5oa2k", "content": "CISA just added CVE-2025-67038 to its known exploited list.\n\nLantronix EDS5000 Series.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#CyberSecurity #PatchNow", "creation_timestamp": "2026-06-26T10:24:37.442876Z"}, {"uuid": "b09ade8e-2161-47eb-9113-5f1de6ce406f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-67038", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mp6vha5xql2h", "content": "\ud83d\udce2 CVE-2025-67038 : ex\u00e9cution de commandes arbitraires dans les convertisseurs Lantronix EDS5000 ajout\u00e9e au KEV CISA\n\ud83d\udcdd #\u2026\nhttps://cyberveille.ch/posts/2026-06-26-cve-2025-67038-execution-de-commandes-arbitraires-dans-les-convertisseurs-lantronix-eds5000-ajoutee-au-kev-cisa/ #Berserk_Bear #Cyberveille", "creation_timestamp": "2026-06-26T12:00:22.125100Z"}, {"uuid": "4ab40adb-1dfc-4406-b481-893d6d544619", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpb5j7jiya2i", "content": "CISA says this Lantronix flaw is being exploited right now. Your OT gear might be next.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#InfoSec #DataBreach", "creation_timestamp": "2026-06-27T09:29:57.908573Z"}, {"uuid": "95f3209d-a787-447b-9a1f-41fe87ae0373", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mpdplau6el2h", "content": "Your industrial network gear is getting pwned in real-time.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/news/article/cisa-warns-critical-lantronix-eds5000-flaw-is-being-actively-exploited/\n\n#CyberSecurity #Security", "creation_timestamp": "2026-06-28T09:58:33.128161Z"}, {"uuid": "3f3551ce-f227-4053-ae0e-78e7eb467e92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-67038", "type": "seen", "source": "https://bsky.app/profile/etairos-ai.bsky.social/post/3mpdy4hggqf23", "content": "Unauth command injection = ROOT on Lantronix EDS5000 serial-to-IP boxes (the OT-to-network bridge). Actively exploited, now CISA KEV, thousands exposed. Get them off the internet: https://threat-intelligence.redeyesecurity.com/blog/lantronix-serial-to-ip-cve-2025-67038-ot-exploited-2026", "creation_timestamp": "2026-06-28T12:31:20.534454Z"}, {"uuid": "52c48fdf-ceea-457d-a034-297ad5211e17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mpgskviyfd2q", "content": "CISA warns of active CVE-2025-67038 (CVSS 9.8) flaw in Lantronix EDS5000 Series. FCEB agencies must fix by June 26, 2026, to prevent possible code injection and harm.", "creation_timestamp": "2026-06-29T15:30:01.588662Z"}, {"uuid": "854caed7-e304-4b01-ad57-f26c1ed08711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-67038", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mph3j5iy442j", "content": "Your OT devices just became CISA's problem. And yours.\n\nCVE-2025-67038.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-28/\n\n#CVE #CyberSecurity", "creation_timestamp": "2026-06-29T18:10:38.352445Z"}]}