LOYTEC electronics GmbH LINX Configurator 7.4.10 is vulnerable to Insecure Permissions. An admin credential is passed as a value of URL parameters without encryption, so it allows remote attackers to steal the password and gain full control of Loytec device configuration.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-11-30T00:00:00
Updated: 2024-08-02T20:45:41.244Z
Reserved: 2023-10-23T00:00:00
Link: CVE-2023-46385
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-11-30T23:15:07.473
Modified: 2023-12-14T08:15:42.350
Link: CVE-2023-46385
Redhat
No data.