Lantronix : Security Vulnerabilities, CVEs, (CSRF)
An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability.
Max CVSS
4.8
EPSS Score
0.06%
Published
2020-12-18
Updated
2022-10-07
Cross-site request forgery (CSRF) vulnerability in Lantronix xPrintServer allows remote attackers to hijack the authentication of administrators for requests that modify configuration, as demonstrated by executing arbitrary commands using the c parameter in the rpc action.
Max CVSS
6.8
EPSS Score
0.59%
Published
2014-11-20
Updated
2017-09-08
2 vulnerabilities found