Active Exploitation of Critical Vulnerabilities in Lantronix and Ubiquiti Devices

Active Exploitation of Critical Vulnerabilities in Lantronix and Ubiquiti Devices

First seen 25 Jun 2026, 14:25 UTC Dataminrattack.mitre.orgDigital.Nhs.UkTechtimeswww.cve.org 89% similarity 72.9
Share:

Article Content

Browse articles
ThreatCluster

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed active exploitation of critical vulnerabilities in Lantronix EDS5000-series devices and Ubiquiti's UniFi OS. The Lantronix vulnerability, CVE-2025-67038, allows unauthenticated command injection, impacting industrial automation systems. Ubiquiti's vulnerabilities, CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910, enable remote code execution and could facilitate broader network breaches. CISA has ordered federal agencies to patch these vulnerabilities by June 26, 2026. The risks are heightened due to the critical roles these devices play in network infrastructure. Both vulnerabilities were added to CISA's Known Exploited Vulnerabilities catalog on June 23, 2026. The urgency is underscored by the potential for significant operational disruption in affected environments.

Key Points: • CISA confirmed active exploitation of CVE-2025-67038 in Lantronix devices. • Ubiquiti's vulnerabilities could allow attackers to gain full control of networks. • Federal agencies must patch these vulnerabilities by June 26, 2026.

ThreatCluster AI

Timeline

2013-11-06
CVE-2013-3906 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2014-10-15
CVE-2014-4114 published
Vulnerability assigned a CVE identifier and published in the National Vulnerability Database.
MITRE
2026-03-11
CVE-2025-67038 published
A critical command injection vulnerability in Lantronix EDS5000 devices was disclosed.
Dataminr
2026-05-22
CVE-2026-34908, CVE-2026-34909, CVE-2026-34910 published
Three vulnerabilities affecting Ubiquiti's UniFi OS were disclosed, allowing remote code execution.
Techtimes
2026-06-23
CISA adds vulnerabilities to KEV catalog
CISA confirmed active exploitation of CVE-2025-67038 and Ubiquiti vulnerabilities, urging immediate action.
Digital.Nhs.Uk
2026-06-25
First public PoC for CVE-2025-67038
Proof-of-concept code for the Lantronix vulnerability was made public, increasing urgency for patching.
Techtimes

Extracted Entities

1 / 2

Community

Browse all →