Cudy LT500E Web shadow hard-coded password
Summary
| CVE | CVE-2025-9725 |
|---|---|
| State | PUBLISHED |
| Assigner | VulDB |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2025-08-31 10:15:34 UTC |
| Updated | 2026-04-29 01:00:01 UTC |
| Description | A vulnerability was identified in Cudy LT500E up to 2.3.12. Affected is an unknown function of the file /squashfs-root/etc/shadow of the component Web Interface. The manipulation leads to use of hard-coded password. The attack must be carried out locally. The attack's complexity is rated as high. The exploitability is told to be difficult. The exploit is publicly available and might be used. Upgrading to version 2.3.13 is able to address this issue. It is recommended to upgrade the affected component. The vendor explains: "[T]he firmware does store a default password of 'admin'. This password has been deprecated since LT500E firmware version 2.3.13 and is no longer used. The LT500E does not have an administrator password set by default; a new password (at least 8 characters ) must be manually created upon first login the web management page." |
Risk And Classification
Primary CVSS: v4.0 1.1 LOW from [email protected]
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Problem Types: CWE-255 | CWE-259 | CWE-798 | CWE-259 Use of Hard-coded Password | CWE-255 Credentials Management
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 4.0 | [email protected] | Secondary | 1.1 | LOW | CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/C... |
| 4.0 | CNA | DECLARED | 2 | LOW | CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P |
| 3.1 | [email protected] | Primary | 8.8 | HIGH | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| 3.1 | [email protected] | Secondary | 2.5 | LOW | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N |
| 3.1 | CNA | DECLARED | 2.5 | LOW | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C |
| 3.0 | CNA | DECLARED | 2.5 | LOW | CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C |
| 2.0 | [email protected] | Secondary | 1 | AV:L/AC:H/Au:S/C:P/I:N/A:N | |
| 2.0 | CNA | DECLARED | 1 | AV:L/AC:H/Au:S/C:P/I:N/A:N/E:POC/RL:OF/RC:C |
CVSS v4.0 Breakdown
Attack Vector
LocalAttack Complexity
HighAttack Requirements
NonePrivileges Required
LowUser Interaction
NoneConfidentiality
LowIntegrity
NoneAvailability
NoneSub Conf.
NoneSub Integrity
NoneSub Availability
NoneCVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
LowUser Interaction
NoneScope
UnchangedConfidentiality
HighIntegrity
HighAvailability
HighCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS v3.0 Breakdown
Attack Vector
LocalAttack Complexity
HighPrivileges Required
LowUser Interaction
NoneScope
UnchangedConfidentiality
LowIntegrity
NoneAvailability
NoneCVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cudy | Lt500e | - | All | All | All |
| Operating System | Cudy | Lt500e Firmware | All | All | All | All |
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Cudy | LT500E | affected 2.3.0 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.1 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.2 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.3 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.4 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.5 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.6 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.7 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.8 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.9 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.10 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.11 | Not specified |
| CNA | Cudy | LT500E | affected 2.3.12 | Not specified |
| CNA | Cudy | LT500E | unaffected 2.3.13 | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| github.com/XXRicardo/iot-cve/blob/main/CUDY/LT500E-R42-2.3.13.md | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | github.com | Exploit, Third Party Advisory |
| vuldb.com | [email protected] | vuldb.com | Third Party Advisory, VDB Entry |
| github.com/XXRicardo/iot-cve/blob/main/CUDY/LT500E-R42-2.3.13.md | 134c704f-9b21-4f2e-91b3-4a467353bcc0 | github.com | Exploit, Third Party Advisory |
| vuldb.com | [email protected] | vuldb.com | Permissions Required, VDB Entry |
| vuldb.com | [email protected] | vuldb.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
CNA: lxyilu (VulDB User) (en)
Additional Advisory Data
| Source | Time | Event |
|---|---|---|
| CNA | 2025-08-30T00:00:00.000Z | Advisory disclosed |
| CNA | 2025-08-30T02:00:00.000Z | VulDB entry created |
| CNA | 2025-08-30T15:45:07.000Z | VulDB entry last update |
There are currently no legacy QID mappings associated with this CVE.