A vulnerability classified as critical was found in Shenzhen Cudy LT300 3.0 up to 2.5.11 . The affected element is an unknown function of the component System Time Configuration Interface . Such manipulation of the argument cbid.system.ntp.current leads to os command injection. This vulnerability is uniquely identified as CVE-2026-32833 . The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.