CVE-2025-53507

MEDIUM

iND Co.,Ltd - Info Disclosure

Title source: llm

Description

Multiple products provided by iND Co.,Ltd contain an insecure storage of sensitive information vulnerability. If exploited, configuration information, such as admin password, may be disclosed. As for the details of affected product names and versions, refer to the information under [Product Status].

References (2)

[Various Sources] https://www.i-netd.co.jp/vulnerability/dceid-2025-001/

[Third Party Advisory] https://jvn.jp/en/jp/JVN50585992/

Scores

CVSS v3 6.5

EPSS 0.0004

EPSS Percentile 10.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-922

Status published

Products (12)

iND Co.,Ltd/F2L Assist-SS-A firmware version 1.03 and earlier

iND Co.,Ltd/F2L Assist-SS-E firmware version 1.01 and earlier

iND Co.,Ltd/HL320-DLS (for module MC7330) firmware version 2.02t and earlier

iND Co.,Ltd/HL320-DLS (for module MC7700) firmware version 1.03 and earlier

iND Co.,Ltd/HL330-DLS (for module MC7330) firmware version 2.02t and earlier

iND Co.,Ltd/HL330-DLS (for module MC7700) firmware version 1.03 and earlier

iND Co.,Ltd/L2X Assist firmware version 2.01 and earlier

iND Co.,Ltd/L2X Assist-RS-A firmware version 1.11 and earlier

iND Co.,Ltd/L2X Assist-RS-E firmware version 1.12 and earlier

iND Co.,Ltd/LM-100 firmware version 1.02 and earlier

... and 2 more

Published Aug 29, 2025

Tracked Since Feb 18, 2026