CVE-2025-67038: Command Injection in Lantronix EDS5000 Actively Exploited26. June 2026CybersecurityLantronix EDS5000 devices are vulnerable to remote code execution via command injection in the login protocol (CVE-2025-67038, CVSS 9.8), and active exploitation is occurring. Share on: