Vulnerability CVE-2023-46381


Published: 2023-11-04   Modified: 2023-11-05

Description:
LOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3 devices lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. An unauthenticated attacker can edit any project (or create a new project) and control its GUI.

 References:
https://seclists.org/fulldisclosure/2023/Nov/0

Copyright 2026, cxsecurity.com

 

Back to Top