CVE-2025-7766

HIGH

Lantronix Provisioning Manager - RCE

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-7766. PoCs published by Byte Reaper, byteReaper77.

AI-analyzed exploit summary This exploit demonstrates an XXE (XML External Entity) injection vulnerability in Lantronix Provisioning Manager ≤ 7.10.3. It allows an attacker to read arbitrary files (e.g., /etc/passwd) or trigger outbound HTTP requests to an attacker-controlled server.

Description

Lantronix Provisioning Manager is vulnerable to XML external entity attacks in configuration files supplied by network devices, leading to unauthenticated remote code execution on hosts with Provisioning Manager installed.

Exploits (2)

exploitdb WORKING POC

by Byte Reaper · cwebappsmultiple

https://www.exploit-db.com/exploits/52417

View Code ZIP pw:eip

This exploit demonstrates an XXE (XML External Entity) injection vulnerability in Lantronix Provisioning Manager ≤ 7.10.3. It allows an attacker to read arbitrary files (e.g., /etc/passwd) or trigger outbound HTTP requests to an attacker-controlled server.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Lantronix Provisioning Manager ≤ 7.10.3

No auth needed

Prerequisites: Network access to the target application · Ability to send crafted XML payloads to the vulnerable endpoint

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1213 - Data from Information Repositories

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by byteReaper77 · poc

https://github.com/byteReaper77/CVE-2025-7766

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2025-7766, demonstrating an XXE vulnerability that allows reading files (e.g., /etc/passwd) and triggering out-of-band HTTP callbacks. The exploit is written in C and uses libcurl to send crafted XML payloads to a target endpoint.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Unknown (XXE vulnerability in XML processing)

No auth needed

Prerequisites: Target endpoint with vulnerable XML parser · Network access to the target · Ability to send HTTP requests to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1213 - Data from Information Repositories

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, US Government Resource

https://www.cisa.gov/news-events/ics-advisories/icsa-25-203-02

Third Party Advisory

https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/105906637/Latest+Version+of+Lantronix+Provisioning+Manager+LPM

Scores

CVSS v3 8.0

EPSS 0.0048

EPSS Percentile 65.4%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-611

Status published

Products (1)

Lantronix/Provisioning Manager < 7.10.2

Published Jul 22, 2025

Tracked Since Feb 18, 2026