CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

LOYTEC LGATE-902 6.3.2 - Local File Inclusion

LOYTEC LGATE-902 6.3.2 is susceptible to local file inclusion which could allow an attacker to manipulate path references and access files and directories including critical system files that are stored outside the root folder of the web application running on the device. This can be used to read...

7.8CVSS7.1AI score0.67624EPSS

Exploits3

RedhatCVE•added 2026/01/09 12:22 p.m.•9 views

CVE-2018-14918

LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal...

7.8CVSS7AI score0.67624EPSS

Exploits3References1

VulnCheck KEV•added 2023/11/26 12:0 a.m.•0 views

VulnCheck KEV: CVE-2018-14918

LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal...

7.8CVSS7.1AI score0.67624EPSS

Exploits3References1

OSV•added 2019/06/28 6:15 p.m.•0 views

CVE-2018-14918

LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal...

7.5CVSS5.8AI score

Exploits0References3

NVD•added 2019/06/28 6:15 p.m.•13 views

CVE-2018-14916

LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion...

9.4CVSS9.3AI score0.67293EPSS

Exploits3References3

OSV•added 2019/06/28 6:15 p.m.•1 views

CVE-2018-14916

LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion...

9.1CVSS5.8AI score

Exploits0References3

NVD•added 2019/06/28 6:15 p.m.•9 views

CVE-2018-14918

LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal...

7.8CVSS7.6AI score0.67624EPSS

Exploits3References3

Prion•added 2019/06/28 6:15 p.m.•12 views

Arbitrary file deletion

LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion...

9.4CVSS9.2AI score0.67293EPSS

Exploits3References3Affected Software1

Prion•added 2019/06/28 6:15 p.m.•10 views

Directory traversal

LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal...

7.8CVSS7.6AI score0.67624EPSS

Exploits3References3Affected Software1

CVE•added 2019/06/28 5:19 p.m.•74 views

CVE-2018-14916

Loytec LGATE-902 (pre-6.4.2) is affected by a local file inclusion vulnerability (CVE-2018-14916). The Nuclei template specifies versions prior to 6.4.2 as vulnerable, enabling an attacker to read sensitive files on the device. The CVE description notes arbitrary file deletion as associated risk....

9.4CVSS9.2AI score0.67293EPSS

Exploits3References3Affected Software1

Cvelist•added 2019/06/28 5:19 p.m.•15 views

CVE-2018-14916

LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion...

9.4AI score0.67293EPSS

Exploits3References3

OSV•added 2019/06/28 5:15 p.m.•0 views

CVE-2018-14919

LOYTEC LGATE-902 6.3.2 devices allow XSS...

6.1CVSS5.8AI score

Exploits0References4

NVD•added 2019/06/28 5:15 p.m.•7 views

CVE-2018-14919

LOYTEC LGATE-902 6.3.2 devices allow XSS...

6.1CVSS6.4AI score0.01691EPSS

Exploits3References4

Prion•added 2019/06/28 5:15 p.m.•9 views

Cross site scripting

LOYTEC LGATE-902 6.3.2 devices allow XSS...

4.3CVSS6.4AI score0.01691EPSS

Exploits3References4Affected Software1

Cvelist•added 2019/06/28 5:1 p.m.•12 views

CVE-2018-14918

LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal...

7.6AI score0.67624EPSS

Exploits3References3

CVE•added 2019/06/28 5:1 p.m.•77 views

CVE-2018-14918

The CVE-2018-14918 entry concerns Loytec LGATE-902 devices. Affected firmware versions are 6.3.2 (and

7.8CVSS7.5AI score0.67624EPSS

In wildExploits3References3Affected Software1

CVE•added 2019/06/28 4:39 p.m.•56 views

CVE-2018-14919

The CVE-2018-14919 entry affects Loytec LGATE-902 gateways. Affected firmware is versions prior to 6.4.2 (tested on 6.3.2). The vulnerability is cross-site scripting (XSS) within the device web interface, with evidence of remote exposure. Public disclosures and third‑party writeups confirm that s...

6.1CVSS6.4AI score0.01691EPSS

Exploits3References4Affected Software1

Cvelist•added 2019/06/28 4:39 p.m.•9 views

CVE-2018-14919

LOYTEC LGATE-902 6.3.2 devices allow XSS...

6.4AI score0.01691EPSS

Exploits3References4

0day.today•added 2019/04/10 12:0 a.m.•161 views

Loytec LGATE-902 XSS / Traversal / File Deletion Vulnerabilities

Loytec LGATE-902 versions prior to 6.4.2 suffer from cross site scripting, arbitrary file deletion, and directory traversal vulnerabilities. Loytec LGATE-902 XSS / Traversal / File Deletion Vulnerabilities INFORMATION Product: Loytec LGATE-902 https://www.loytec.com/ Affected versions: 6.4.2 test...

0.67624EPSS

Exploits5

Packet Storm•added 2019/04/09 12:0 a.m.•44 views

Loytec LGATE-902 XSS / Traversal / File Deletion

INFORMATION Product: Loytec LGATE-902 https://www.loytec.com/ Affected versions: 6.4.2 tested on version 6.3.2 CVE IDs: CVE-2018-14919 Stored and reflected XSS, CVE-2018-14918 Path traversal, and CVE-2018-14916 Arbitrary file deletion. Remote-exploit: yes TIMELINE Vendor notification: 26th July,...

0.67624EPSS

Exploits5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by