Vulnerabilities > Lantronix > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-22 | CVE-2021-21878 | Exposure of Resource to Wrong Sphere vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 A local file inclusion vulnerability exists in the Web Manager Applications and FsBrowse functionality of Lantronix PremierWave 2050 8.9.0.0R4. | 4.9 |
| 2021-12-22 | CVE-2021-21886 | Path Traversal vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of Lantronix PremierWave 2050 8.9.0.0R4. | 4.3 |
| 2021-12-22 | CVE-2021-21896 | Path Traversal vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). | 6.5 |
| 2020-12-18 | CVE-2020-13528 | Cleartext Transmission of Sensitive Information vulnerability in Lantronix Xport Edge Firmware An information disclosure vulnerability exists in the Web Manager and telnet CLI functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. | 5.3 |
| 2020-12-18 | CVE-2020-13527 | Cross-Site Request Forgery (CSRF) vulnerability in Lantronix SGX Firmware and Xport Edge Firmware An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. | 4.5 |
| 2019-05-02 | CVE-2018-10383 | Cross-site Scripting vulnerability in Lantronix Securelinx Spider Firmware Lantronix SecureLinx Spider (SLS) 2.2+ devices have XSS in the auth.asp login page. | 6.1 |