HIGH
Lantronix
CVE published 2025-07-22
CVE-2025-7766
CVE-2025-7766 affects Lantronix Provisioning Manager and is described by CISA as an XML External Entity (XXE) issue in configuration files supplied by network devices. The advisory says the flaw can lead to unauthenticated remote code execution on hosts with Provisioning Manager installed, and Lantronix recommends upgrading to version 7.10.4 or later.