Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5775

Malware in sbrugna...

5.3CVSS4.2AI score0.02933EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:17 p.m.8 views

CVE-2020-13527

An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability...

4.8CVSS7.1AI score0.00589EPSS
Exploits0
CNNVD
CNNVD
added 2024/01/23 12:0 a.m.5 views

Lantronix Xport Encryption Issue Vulnerability

Lantronix Xport Edge is a hardware device from Lantronix, Inc. that enables Ethernet connectivity and control of industrial equipment. A security vulnerability exists in Lantronix Xport version 2.0.0.13, which is caused by sending weakly encoded credentials in the web request header...

7.5CVSS6.8AI score0.00305EPSS
Exploits0References3
OSV
OSV
added 2020/12/18 12:15 a.m.5 views

CVE-2020-13527

An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability...

4.5CVSS5.8AI score0.00589EPSS
Exploits0References1
NVD
NVD
added 2020/12/18 12:15 a.m.17 views

CVE-2020-13528

An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause information disclosure. An attacker can sniff the network to trigger this vulnerabilit...

5.3CVSS4AI score0.02933EPSS
Exploits0References1
NVD
NVD
added 2020/12/18 12:15 a.m.24 views

CVE-2020-13527

An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability...

4.8CVSS5AI score0.00589EPSS
Exploits0References1
OSV
OSV
added 2020/12/18 12:15 a.m.5 views

CVE-2020-13528

An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause information disclosure. An attacker can sniff the network to trigger this vulnerabilit...

5.3CVSS5.8AI score0.02933EPSS
Exploits0References1
Prion
Prion
added 2020/12/18 12:15 a.m.14 views

Authentication flaw

An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability...

3.5CVSS4.9AI score0.00589EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2020/12/18 12:15 a.m.16 views

Information disclosure

An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause information disclosure. An attacker can sniff the network to trigger this vulnerabilit...

2.6CVSS4.9AI score0.02933EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/12/17 11:38 p.m.71 views

CVE-2020-13528

Lantronix XPort EDGE Web Manager and telnet CLI expose sensitive information in cleartext over the network. Specifically, TLS private keys and AES encryption/decryption keys may be transmitted in cleartext during configuration, allowing an attacker who can sniff traffic to capture keys and potent...

5.3CVSS4.9AI score0.02933EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/17 11:38 p.m.33 views

CVE-2020-13527

An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability...

4.8CVSS4.9AI score0.00589EPSS
Exploits0References1
CVE
CVE
added 2020/12/17 11:38 p.m.77 views

CVE-2020-13527

CVE-2020-13527 affects Lantronix XPort EDGE Web Manager, with authenticated session handling flaws that can lead to privilege escalation. A GET request to Web Manager could set a user session with elevated rights, enabling later requests to modify configuration (e.g., enabling/disabling services,...

4.8CVSS4.9AI score0.00589EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2020/12/17 12:0 a.m.4 views

PT-2020-13604 · Lantronix · Xport Edge

Name of the Vulnerable Software and Affected Versions: Lantronix XPort EDGE versions 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12, 4.2.0.0R7 Description: An authentication bypass issue exists in the Web Manager functionality. A specially crafted HTTP request can cause increased privileges. An attacker can...

4.8CVSS4.8AI score0.00589EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/12/17 12:0 a.m.4 views

PT-2020-13605 · Lantronix · Xport Edge

Name of the Vulnerable Software and Affected Versions: Lantronix XPort EDGE versions 3.0.0.0R11 through 4.2.0.0R7 Description: An information disclosure issue exists in the Web Manager and telnet CLI functionality. A specially crafted HTTP request can cause information disclosure. An attacker can...

5.3CVSS3.7AI score0.02933EPSS
Exploits0References4
Talos Blog
Talos Blog
added 2020/12/16 6:12 a.m.30 views

Vulnerability Spotlight: Two vulnerabilities in Lantronix XPort EDGE

Kelly Leuschner of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw.Executive summary Cisco Talos recently discovered two vulnerabilities in the Web Manager functionality of Lantronix XPort EDGE. The XPort EDGE is a next-generation wired Ethernet gateway for providing secure...

1.5AI score
Exploits0
CNNVD
CNNVD
added 2020/12/16 12:0 a.m.8 views

Lantronix Xport Edge Cross-Site Request Forgery Vulnerability

Lantronix Xport Edge is a hardware device from Lantronix, Inc. that enables industrial equipment to have Ethernet connectivity and control. The Lantronix XPort EDGE suffers from a cross-site request forgery vulnerability that originates from an authentication bypass vulnerability in the Web Manag...

4.8CVSS5.8AI score0.00589EPSS
Exploits0References2
Talos
Talos
added 2020/12/16 12:0 a.m.51 views

Lantronix XPort EDGE Web Manager and telnet CLI cleartext transmission of sensitive information vulnerability

Summary An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause information disclosure. An attacker can sniff the network to trigger this...

5.3CVSS4.3AI score0.02933EPSS
Exploits0
Talos
Talos
added 2020/12/16 12:0 a.m.54 views

Lantronix XPort EDGE Web Manager CSRF vulnerability

Summary An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability. Test...

4.8CVSS5.1AI score0.00589EPSS
Exploits0
CNNVD
CNNVD
added 2020/12/16 12:0 a.m.6 views

Lantronix Xport Edge Security Vulnerability

Lantronix Xport Edge is a hardware device from Lantronix USA that supports industrial equipment with Ethernet connectivity and control capabilities. A security vulnerability exists in the Lantronix XPort EDGE that originates from a specially crafted HTTP request that could lead to information...

5.3CVSS5.9AI score0.02933EPSS
Exploits0References2
Rows per page
Query Builder