CVE-2015-7906

Published Dec 21, 2015

Last updated 9 years ago

CVSS info 10.0

Overview

Description: LOYTEC LIP-3ECTB 6.0.1, LINX-100, LVIS-3E100, and LIP-ME201 devices allow remote attackers to read a password-hash backup file via unspecified vectors.
Source: ics-cert@hq.dhs.gov
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-255

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:loytec:l-switch_and_l-ip_firmware:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F0795BA-5E7D-45BB-82FE-13F3368C097E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:loytec:linx-100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "29BBF054-6B05-4F0C-8B17-FD148582B422"
          },
          {
            "criteria": "cpe:2.3:h:loytec:lip-3ectb:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F63CC388-013C-478C-B21A-8BBB305005D6"
          },
          {
            "criteria": "cpe:2.3:h:loytec:lip-me201:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "842CB271-8A4A-4E29-B9CA-3B400005C947"
          },
          {
            "criteria": "cpe:2.3:h:loytec:lvis-3e100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "873EF68F-6A26-4796-8221-C57ADC29BA41"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References