Lantronix Provisioning Manager

Source: All CISA Advisories | Added:

The Lantronix Provisioning Manager has a vulnerability related to improper restriction of XML External Entity references, which could lead to unauthenticated remote code execution. Users are advised to update to version 7.10.4 or later to mitigate the risk.

---

Impact: Lantronix Provisioning Manager: Versions 7.10.2 and prior

In the Wild: No

Age: Newly disclosed

Remediation: Update to v7.10.4 or later; minimize network exposure; use secure remote access methods like VPNs.

Read Full Original Article →