Name of the Vulnerable Software and Affected Versions:

Lantronix Provisioning Manager (affected versions not specified)

Description:

Lantronix Provisioning Manager is susceptible to XML external entity attacks through configuration files received from network devices. Successful exploitation can result in unauthenticated remote code execution on systems where Provisioning Manager is installed.

Recommendations:

At the moment, there is no information about a newer version that contains a fix for this vulnerability.