Summary
Lantronix patched eight vulnerabilities in its EDS3000PS and EDS5000 terminal servers, including critical flaws that allow unauthenticated attackers to bypass security and execute commands with root privileges.
Take Action:
If you are using Lantronix terminal servers, review this advisory. As usual, first priority is to isolate these devices from the public internet and restrict management access to trusted VPNs only. Then plan a quick update cycle, don't ignore these issues. There are two critical flaws that are trivial to exploit and hackers will find a way around the isolation given enough time.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)