CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 26, 2026.

The vulnerability in question is CVE-2025-67038 (CVSS score: 9.8), a code injection flaw that could result in the execution

FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known…

Uncategorized June 22, 2026

ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack

Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack after unknown threat actors managed to tamper with…

Uncategorized June 20, 2026

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Threat actors are exploiting a recently patched security flaw impacting Gravity SMTP, a WordPress plugin that’s installed on about 100,000…

Our Services

Company

Resources

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

More from our Knowledge Bank

FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation

ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Ready to get started?