Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
deltaww infrasuite device master vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-47279
In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated malicious user to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying.
Deltaww Infrasuite Device Master 1.0.7
8.8
CVSSv3
CVE-2023-46690
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an malicious user to write to any file to any location of the filesystem, which could lead to remote code execution.
Deltaww Infrasuite Device Master 1.0.7
9.8
CVSSv3
CVE-2023-39226
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated malicious user to execute arbitrary code through a single UDP packet.
Deltaww Infrasuite Device Master 1.0.7
9.8
CVSSv3
CVE-2023-47207
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated malicious user to execute code with local administrator privileges.
Deltaww Infrasuite Device Master 1.0.7
7.5
CVSSv3
CVE-2023-34316
?An attacker could bypass the latest Delta Electronics InfraSuite Device Master (versions before 1.0.7) patch, which could allow an malicious user to retrieve file contents.
Deltaww Infrasuite Device Master
9.8
CVSSv3
CVE-2023-30765
?Delta Electronics InfraSuite Device Master versions before 1.0.7 contain improper access controls that could allow an malicious user to alter privilege management configurations, resulting in privilege escalation.
Deltaww Infrasuite Device Master
1 Github repository
9.8
CVSSv3
CVE-2023-34347
?Delta Electronics InfraSuite Device Master versions before 1.0.7 contains classes that cannot be deserialized, which could allow an attack to remotely execute arbitrary code.
Deltaww Infrasuite Device Master
8.8
CVSSv3
CVE-2023-1134
Delta Electronics InfraSuite Device Master versions before 1.0.5 are affected by a path traversal vulnerability, which could allow an malicious user to read local files, disclose plaintext credentials, and escalate privileges.
Deltaww Infrasuite Device Master
7.5
CVSSv3
CVE-2023-1136
In Delta Electronics InfraSuite Device Master versions before 1.0.5, an unauthenticated attacker could generate a valid token, which would lead to authentication bypass.
Deltaww Infrasuite Device Master
8.8
CVSSv3
CVE-2023-1137
Delta Electronics InfraSuite Device Master versions before 1.0.5 contain a vulnerability in which a low-level user could extract files and plaintext credentials of administrator users, resulting in privilege escalation.
Deltaww Infrasuite Device Master
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »