Vulnerability Description
LOYTEC LIP-3ECTB 6.0.1, LINX-100, LVIS-3E100, and LIP-ME201 devices allow remote attackers to read a password-hash backup file via unspecified vectors.
CVSS Score
10.0
HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Loytec | L-Switch And L-Ip Firmware | 6.0.1 |
| Loytec | Linx-100 | - |
| Loytec | Lip-3Ectb | - |
| Loytec | Lip-Me201 | - |
| Loytec | Lvis-3E100 | - |
Related Weaknesses (CWE)
References
- https://ics-cert.us-cert.gov/advisories/ICSA-15-342-02Third Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-15-342-02Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2015-7906?
CVE-2015-7906 is a vulnerability with a CVSS score of 10.0 (HIGH). LOYTEC LIP-3ECTB 6.0.1, LINX-100, LVIS-3E100, and LIP-ME201 devices allow remote attackers to read a password-hash backup file via unspecified vectors.
How severe is CVE-2015-7906?
CVE-2015-7906 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-7906?
Check the references section above for vendor advisories and patch information. Affected products include: Loytec L-Switch And L-Ip Firmware, Loytec Linx-100, Loytec Lip-3Ectb, Loytec Lip-Me201, Loytec Lvis-3E100.