Security Advisory

CVE-2025-52361

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-01 00:00:00

Last updated 2025-11-03 20:05:47

Assigner mitre

State PUBLISHED

Description

Insecure permissions in the script /etc/init.d/lighttpd in AK-Nord USB-Server-LXL Firmware v0.0.16 Build 2023-03-13 allows a locally authenticated low-privilege user to execute arbitrary commands with root privilege via editing this script which is executed with root-privileges on any interaction and on every system boot.

← Browse all CVEs View on cve.org ↗