Vulnerabilities > Loytec
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-30 | CVE-2023-46383 | Cleartext Transmission of Sensitive Information vulnerability in Loytec L-Inx Configurator 7.4.10 LOYTEC electronics GmbH LINX Configurator 7.4.10 uses HTTP Basic Authentication, which transmits usernames and passwords in base64-encoded cleartext and allows remote attackers to steal the password and gain full control of Loytec device configuration. | 7.5 |
| 2023-11-30 | CVE-2023-46384 | Cleartext Storage of Sensitive Information vulnerability in Loytec L-Inx Configurator 7.4.10 LOYTEC electronics GmbH LINX Configurator 7.4.10 is vulnerable to Insecure Permissions. | 7.5 |
| 2023-11-30 | CVE-2023-46385 | Cleartext Transmission of Sensitive Information vulnerability in Loytec L-Inx Configurator 7.4.10 LOYTEC electronics GmbH LINX Configurator 7.4.10 is vulnerable to Insecure Permissions. | 7.5 |
| 2023-11-30 | CVE-2023-46386 | Cleartext Storage of Sensitive Information vulnerability in Loytec Linx-151 Firmware and Linx-212 Firmware LOYTEC electronics GmbH LINX-212 firmware 6.2.4 and LINX-151 firmware 7.2.4 are vulnerable to Insecure Permissions via registry.xml file. | 7.5 |
| 2023-11-30 | CVE-2023-46387 | Unspecified vulnerability in Loytec Linx-151 Firmware and Linx-212 Firmware LOYTEC electronics GmbH LINX-212 firmware 6.2.4 and LINX-151 firmware 7.2.4 are vulnerable to Incorrect Access Control via dpal_config.zml file. | 7.5 |
| 2023-11-30 | CVE-2023-46388 | Cleartext Storage of Sensitive Information vulnerability in Loytec Linx-151 Firmware and Linx-212 Firmware LOYTEC electronics GmbH LINX-212 6.2.4 and LINX-151 7.2.4 are vulnerable to Insecure Permissions via dpal_config.zml file. | 7.5 |
| 2023-11-30 | CVE-2023-46389 | Unspecified vulnerability in Loytec Linx-151 Firmware and Linx-212 Firmware LOYTEC electronics GmbH LINX-212 firmware 6.2.4 and LINX-151 Firmware 7.2.4 are vulnerable to Incorrect Access Control via registry.xml file. | 7.5 |
| 2023-11-04 | CVE-2023-46380 | Cleartext Transmission of Sensitive Information vulnerability in Loytec products LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3 devices send password-change requests via cleartext HTTP. | 7.5 |
| 2023-11-04 | CVE-2023-46381 | Missing Authentication for Critical Function vulnerability in Loytec products LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3 devices lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. | 8.2 |
| 2023-11-04 | CVE-2023-46382 | Cleartext Transmission of Sensitive Information vulnerability in Loytec products LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3 devices use cleartext HTTP for login. | 7.5 |