Information Disclosure Vulnerability in Lantronix XPort EDGE Web Manager and telnet CLI

Information Disclosure Vulnerability in Lantronix XPort EDGE Web Manager and telnet CLI

CVE-2020-13528 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause information disclosure. An attacker can sniff the network to trigger this vulnerability.

Learn more about our Web App Pen Testing.