CVE Tools

loytec

ICS / OT / IoTcommercial

15

Cumulative CVEs

3

Monthly snapshots

#73

Peak rank

Top products

linx-212 firmware7 linx-151 firmware4 liob-586 firmware3

Latest CVEs

The 15 most recently published vulnerabilities affecting loytec.

CVE-2023-46389LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Incorrect Access Control via registry.xml file. This vulnerability allows remote attackers to disclose sensiti...7.5Nov 30, 2023
CVE-2023-46388LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Insecure Permissions via dpal_config.zml file. This vulnerability allows remote attackers to disclose smtp cli...7.5Nov 30, 2023
CVE-2023-46387LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Incorrect Access Control via dpal_config.zml file. This vulnerability allows remote attackers to disclose sens...7.5Nov 30, 2023
CVE-2023-46386LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Insecure Permissions via registry.xml file. This vulnerability allows remote attackers to disclose smtp client...7.5Nov 30, 2023
CVE-2023-46385LOYTEC electronics GmbH LINX Configurator (all versions) is vulnerable to Insecure Permissions. An admin credential is passed as a value of URL parameters without encryption, so it allows remote at...7.5Nov 30, 2023
CVE-2023-46384LOYTEC electronics GmbH LINX Configurator (all versions) is vulnerable to Insecure Permissions. Cleartext storage of credentials allows remote attackers to disclose admin password and bypass an aut...7.5Nov 30, 2023
CVE-2023-46383LOYTEC electronics GmbH LINX Configurator (all versions) uses HTTP Basic Authentication, which transmits usernames and passwords in base64-encoded cleartext and allows remote attackers to steal the...7.5Nov 30, 2023
CVE-2023-46382LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) use cleartext HTTP for login.7.5Nov 4, 2023
CVE-2023-46381LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/...8.2Nov 4, 2023
CVE-2023-46380LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) send password-change requests via cleartext HTTP.7.5Nov 4, 2023
CVE-2018-14916LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion.9.1Jun 28, 2019
CVE-2018-14918LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal.7.5Jun 28, 2019
CVE-2018-14919LOYTEC LGATE-902 6.3.2 devices allow XSS.6.1Jun 28, 2019
CVE-2017-13998An Insufficiently Protected Credentials issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The application does not sufficiently protect sensitive information from unauthorized access.7.5Oct 5, 2017
CVE-2017-13996A Relative Path Traversal issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The web user interface fails to prevent access to critical files that non administrative users should not ...8.8Oct 5, 2017