{"vulnerability": "CVE-2023-46381", "sightings": [{"uuid": "205f6167-335f-4c56-9f15-425b21acd690", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46381", "type": "seen", "source": "https://t.me/cibsecurity/73553", "content": "\u203c CVE-2023-46381 \u203c\n\nLOYTEC LINX-212 firmware 6.2.4 and LVIS-3ME12-A1 firmware 6.2.2 and LIOB-586 firmware 6.2.3 devices lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. An unauthenticated attacker can edit any project (or create a new project) and control its GUI.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-05T01:24:28.000000Z"}, {"uuid": "c0f631f2-654e-4e0a-85aa-7a856c619fbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46381", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14217", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-46381\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: LOYTEC LINX-151, LINX-212, LVIS-3ME12-A1, LIOB-586, LIOB-580 V2, LIOB-588, L-INX Configurator devices (all versions) lack authentication for the preinstalled version of LWEB-802 via an lweb802_pre/ URI. An unauthenticated attacker can edit any project (or create a new project) and control its GUI.\n\ud83d\udccf Published: 2023-11-04T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T03:55:35.812Z\n\ud83d\udd17 References:\n1. https://seclists.org/fulldisclosure/2023/Nov/0\n2. http://packetstormsecurity.com/files/175646/LOYTEC-Electronics-Insecure-Transit-Insecure-Permissions-Unauthenticated-Access.html\n3. https://www.txone.com/blog/ten-unpatched-vulnerabilities-in-building-automation-products-identified-by-txone-networks/\n4. https://www.cisa.gov/news-events/ics-advisories/icsa-24-247-01", "creation_timestamp": "2025-05-01T04:14:30.000000Z"}]}