Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
deltaww infrasuite device master vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-41688
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior lack proper authentication for functions that create and modify user groups. An attacker could provide malicious serialized objects that could run these functions without authentication to create a new user ...
Deltaww Infrasuite Device Master
NA
CVE-2022-41629
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to access the aprunning endpoint, which could allow an malicious user to retrieve any file from the “RunningConfigs” directory. The attacker could then view and modify...
Deltaww Infrasuite Device Master
NA
CVE-2022-41776
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to trigger the WriteConfiguration method, which could allow an malicious user to provide new values for user configuration files such as UserListInfo.xml. This could lead to the c...
Deltaww Infrasuite Device Master
NA
CVE-2022-41779
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize network packets without proper verification. If the device connects to an attacker-controlled server, the attacker could send maliciously crafted packets that would be deserialized and executed, ...
Deltaww Infrasuite Device Master
NA
CVE-2022-38142
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-Gateway service port without proper verification. An attacker could provide malicious serialized objects to execute arbitrary code upon deserializat...
Deltaww Infrasuite Device Master
NA
CVE-2023-1134
Delta Electronics InfraSuite Device Master versions before 1.0.5 are affected by a path traversal vulnerability, which could allow an malicious user to read local files, disclose plaintext credentials, and escalate privileges.
Deltaww Infrasuite Device Master
NA
CVE-2023-0444
A privilege escalation vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.02a. A default user 'User', which is in the 'Read Only User' group, can view the password of another default user 'Administrator', which is in the 'A...
Deltaww Infrasuite Device Master 00.00.02a
NA
CVE-2023-39226
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated malicious user to execute arbitrary code through a single UDP packet.
Deltaww Infrasuite Device Master 1.0.7
NA
CVE-2023-47207
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated malicious user to execute code with local administrator privileges.
Deltaww Infrasuite Device Master 1.0.7
NA
CVE-2023-47279
In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated malicious user to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying.
Deltaww Infrasuite Device Master 1.0.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
log injection
CVE-2024-37079
type confusion
CVE-2024-32943
CVE-2024-30103
CVE-2024-37350
arbitrary code
CVE-2024-6189
CVE-2024-6225
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »