VYPR

LINX-212

by Loytec

CVEs (6)

  • CVE-2023-46386Nov 30, 2023
    risk 0.00cvss epss 0.02

    LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Insecure Permissions via registry.xml file. This vulnerability allows remote attackers to disclose smtp client account credentials and bypass email authentication.

  • CVE-2023-46387Nov 30, 2023
    risk 0.00cvss epss 0.02

    LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Incorrect Access Control via dpal_config.zml file. This vulnerability allows remote attackers to disclose sensitive information on Loytec device data point configuration.

  • CVE-2023-46389Nov 30, 2023
    risk 0.00cvss epss 0.02

    LOYTEC electronics GmbH LINX-212 and LINX-151 devices (all versions) are vulnerable to Incorrect Access Control via registry.xml file. This vulnerability allows remote attackers to disclose sensitive information on LINX configuration.

  • CVE-2023-46381Nov 4, 2023
    risk 0.00cvss epss 0.07

    LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. An unauthenticated attacker can edit any project (or create a new project)…

  • CVE-2023-46382Nov 4, 2023
    risk 0.00cvss epss 0.03

    LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) use cleartext HTTP for login.

  • CVE-2023-46380Nov 4, 2023
    risk 0.00cvss epss 0.03

    LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) send password-change requests via cleartext HTTP.