Loytec LVIS-3ME12-A1 Firmware 6.2.2

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:loytec:lvis-3me12-a1_firmware:6.2.2:*:*:*:*:*:*:*

part: o version: 6.2.2 update: *

VendorLoytec (6190caa2-852a-5dba-b6c8-40e7b31c6b3d)
ProductLvis 3Me12 A1 Firmware (cffb87b7-580c-5eaa-a488-377e9d784a22)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-46382 vulnerable 2026-06-03 14:53:10.000932 Details available
LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) use cleartext HTTP for login.
Published: 2023-11-04T00:00:00.000Z
Updated: 2025-11-04T19:25:37.303Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-46381 vulnerable 2026-06-03 14:53:10.000514 Details available
LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. An unauthenticated attacker can edit any project (or create a new project) and control its GUI.
Published: 2023-11-04T00:00:00.000Z
Updated: 2025-11-04T19:25:36.230Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-46380 vulnerable 2026-06-03 14:53:09.998922 Details available
LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) send password-change requests via cleartext HTTP.
Published: 2023-11-04T00:00:00.000Z
Updated: 2025-11-04T19:25:35.144Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.