Loytec LINX Automation Servers Information Disclosure / Cleartext Secrets Vulnerability

Loytec LINX-151 with firmware version 7.2.4 and LINX-212 with firmware version 6.2.4 suffer from file disclosure vulnerabilities that leak secrets as well as issues with stories secrets in the clear. + CVE : CVE-2023-46386, CVE-2023-46387, CVE-2023-46388, CVE-2023-46389 + Title : Multiple...

CVE-2023-46382

LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices all versions use cleartext HTTP for login...

CVE-2023-46380

LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices all versions send password-change requests via cleartext HTTP...

LOYTEC LINX-212 Security Vulnerability

The LOYTEC LINX-212 is a building controller from LOYTEC. A security vulnerability exists in the LOYTEC LINX-212 6.2.4 firmware version that originates when a password change request is transmitted in clear text when sent on the web interface, resulting in information theft and account theft...

NETGEAR ReadyNAS LAN dbbroker 6.2.4 - Credential Disclosure

NETGEAR ReadyNAS LAN dbbroker 6.2.4 - Credential Disclosure !/usr/bin/env python Exploit Title: NETGEAR ReadyNAS LAN /dbbroker Credential Stealing Date: 25/07/2015 Exploit Author: St0rn Vendor Homepage: www.netgear.fr/business/products/storage/readynas Software Link:...

Netgear ReadyNAS LAN /dbbroker 6.2.4 - Credential Disclosure

!/usr/bin/env python Exploit Title: NETGEAR ReadyNAS LAN /dbbroker Credential Stealing Date: 25/07/2015 Exploit Author: St0rn Vendor Homepage: www.netgear.fr/business/products/storage/readynas Software Link: apps.readynas.com/pages/?pageid=143 Version: Firmware 6.2.4 Import from scapy.all import...