Vulnerabilities > CVE-2016-4325 - Unspecified vulnerability in Lantronix Xprintserver Firmware

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

lantronix

critical

NVD

Published: 2016-05-14

Updated: 2016-05-19

Summary

Lantronix xPrintServer devices with firmware before 5.0.1-65 have hardcoded credentials, which allows remote attackers to obtain root access via unspecified vectors. <a href="http://cwe.mitre.org/data/definitions/798.html">CWE-798: Use of Hard-coded Credentials</a>

Vulnerable Configurations

Part	Description	Count
Application	Lantronix Lantronix Xprintserver Firmware *	1

References

http://www.kb.cert.org/vuls/id/785823