Summary: A critical authentication vulnerability in Lantronix XPort devices can allow remote hackers to access and control systems deployed in vital sectors, such as energy and transportation. With over 1,400 instances identified, including in the oil and gas industry, the flaw poses significant cybersecurity risks. The vendor has not yet issued a patch, recommending users transition to a different product instead.
Affected: Lantronix XPort devices
Keypoints :
- Vulnerability allows unauthorized access to configuration interfaces.
- Impact noted in critical sectors like energy, transportation, and water.
- Potential for hackers to disrupt services, manipulate data, and create safety hazards.
- Over 1,400 exposed instances identified, with significant numbers in oil and gas infrastructure.
- Vendor recommends migration to the XPort Edge product as a solution.