CVE-2023-46389

Summary

CVE-2023-46389 is a vulnerability found in LOYTEC electronics GmbH LINX-212 firmware 6.2.4 and LINX-151 Firmware 7.2.4. This vulnerability allows remote attackers to gain access to sensitive information on the LINX configuration by exploiting an issue in the registry.xml file. The base severity of this vulnerability is rated as HIGH, with a base score of 7.5 out of 10. The confidentiality impact is also rated as HIGH, posing a significant danger to organizations using these affected products. No user interaction or privileges are required for exploitation, and the attack vector is through the network. The vulnerability has not been changed since its discovery, and its exploitability score is 3.9 out of 10. To remediate this vulnerability, it is recommended to update the firmware of the affected LOYTEC electronics GmbH LINX devices to a version that includes a fix for this issue. Applying the latest firmware updates will mitigate the incorrect access control problem in the registry.xml file, preventing remote attackers from accessing sensitive information. It is crucial for organizations using these affected products to address this vulnerability promptly as it could lead to unauthorized access to confidential data, potentially resulting in data breaches or other security incidents.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.