Critical 0day flaw Exposes 70k XSpeeder Devices as Vendor Ignores Alert

Researchers reveal CVE-2025-54322, a critical unpatched flaw in XSpeeder networking gear found by AI agents. 70,000 industrial and branch devices are exposed.

Imagine a master key that opens the front door to 70,000 businesses, but the locksmith refuses to fix the vulnerability. This is exactly what’s happening with a security vulnerability found in XSpeeder networking gear. The issue was caught by the research firm pwn.ai, which used its proprietary AI tool, also named pwn.ai, to find the vulnerability before hackers could exploit it.

The vulnerability, tracked as CVE-2025-54322, earned a perfect 10.0 (Critical) score, the highest possible threat rating, because it lets outsiders take total “root” control of a device without needing a password. Root access, as we know it, is the ultimate prize for hackers; it gives them the power to watch traffic, steal data, or shut down systems entirely.

How the AI ...