ГлавнаяУязвимости → CVE-2025-7766
8высокая

CVE-2025-7766

Описание

Lantronix Provisioning Manager is vulnerable to XML external entity attacks in configuration files supplied by network devices, leading to unauthenticated remote code execution on hosts with Provisioning Manager installed.

CVSS
Балл8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/105906637/Latest+Version+of+Lantronix+Provisioning+Manager+LPMhttps://www.cisa.gov/news-events/ics-advisories/icsa-25-203-02