Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/05/22 11:0 p.m.10 views

CVE-2025-4338 Lantronix Device Installer Improper Restriction of XML External Entity Reference

Lantronix Device installer is vulnerable to XML external entity XXE attacks in configuration files read from the network device. An attacker could obtain credentials, access these network devices, and modify their configurations. An attacker may also gain access to the host running the Device...

6.9CVSS6.8AI score0.00201EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/22 11:0 p.m.13 views

CVE-2025-4338 Lantronix Device Installer Improper Restriction of XML External Entity Reference

Lantronix Device installer is vulnerable to XML external entity XXE attacks in configuration files read from the network device. An attacker could obtain credentials, access these network devices, and modify their configurations. An attacker may also gain access to the host running the Device...

6.9CVSS0.00201EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/05/22 12:0 a.m.5 views

Lantronix Device installer 代码问题漏洞

Lantronix Device installer is a device installer from Lantronix USA. A code issue vulnerability exists in Lantronix Device installer version 4.4.0.7 and prior versions, which stems from an XML external entity attack in a configuration file that could lead to credential disclosure and configuratio...

6.9CVSS6.7AI score0.00201EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/22 12:0 a.m.7 views

PT-2025-22568 · Lantronix · Lantronix Device Installer

Name of the Vulnerable Software and Affected Versions: Lantronix Device installer affected versions not specified Description: The issue concerns XML external entity XXE attacks in configuration files read from the network device. An attacker could obtain credentials, access these network devices...

6.9CVSS6.4AI score0.00201EPSS
Exploits0References4
Rows per page
Query Builder