Cudy LT300 3.0 OS Command Injection via NTP Configuration

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that allows authenticated attackers to execute arbitrary commands by injecting shell metacharacters into the cbid.system.ntp.current POST parameter in the system time configuration interface. Attackers can submit malicious payloads through the NTP settings endpoint to achieve remote code execution on the underlying system.

AI Analysis

OS command injection vulnerability in Cudy LT300 3.0 via NTP configuration

Basic Information

ID CVE-2026-32833

Source VulnCheck

Published Jun 26, 2026 at 19:54

Affected Product

Vendor Shenzhen Cudy Technology Co., Ltd.

Product LT300 3.0

Affected Versions Shenzhen Cudy Technology Co., Ltd. LT300 3.0 0

CWE Classification

CWE-78

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Shenzhen Cudy Technology Co., Ltd.

Product LT300 3.0

Version prior to 2.5.12

References

{
    "lastseen": "",
    "description": "Cudy LT300 3.0 running firmware prior to version 2.5.12 contains an OS command injection vulnerability that allows authenticated attackers to execute arbitrary commands by injecting shell metacharacters into the cbid.system.ntp.current POST parameter in the system time configuration interface. Attackers can submit malicious payloads through the NTP settings endpoint to achieve remote code execution on the underlying system.",
    "published": "2026-06-26T19:54:02.339Z",
    "modified": "2026-06-26T19:54:02.339Z",
    "type": "cve",
    "title": "Cudy LT300 3.0 OS Command Injection via NTP Configuration",
    "source": "VulnCheck",
    "references": "https://www.cudy.com/en-us/pages/download-center/lt300-3-0\nhttps://www.vulncheck.com/advisories/cudy-lt300-os-command-injection-via-ntp-configuration",
    "id": "CVE-2026-32833",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "Shenzhen Cudy Technology Co., Ltd. LT300 3.0 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "LT300 3.0",
    "version": "0",
    "vendor": "Shenzhen Cudy Technology Co., Ltd.",
    "ai_description": "OS command injection vulnerability in Cudy LT300 3.0 via NTP configuration",
    "ai_severity": "High",
    "ai_vendor": "Shenzhen Cudy Technology Co., Ltd.",
    "ai_product": "LT300 3.0",
    "ai_version": "prior to 2.5.12",
    "ai_score": 8.7
}

Cudy LT300 3.0 OS Command Injection via NTP Configuration_CVE-2026-32833