CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/05/23 2:58 a.m.•2 views

CVE-2023-1140

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability that could allow an attacker to achieve unauthenticated remote code execution in the context of an administrator...

9.8CVSS8AI score0.00733EPSS

Exploits0References1

OSV•added 2023/03/27 3:15 p.m.•0 views

CVE-2023-1142

In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an attacker could use URL decoding to retrieve system files, credentials, and bypass authentication resulting in privilege escalation...

9.8CVSS7.3AI score0.00466EPSS

Exploits0References1

Cvelist•added 2023/03/27 2:48 p.m.•18 views

CVE-2023-1142 CVE-2023-1142

7.5CVSS9.8AI score0.00466EPSS

Exploits0References1

CNNVD•added 2023/03/27 12:0 a.m.•1 views

Delta Electronics InfraSuite Device Master 路径遍历漏洞

Delta Electronics InfraSuite Device Master is Delta Electronics' device for simplifying and automating critical equipment monitoring. A path traversal vulnerability in Delta Electronics InfraSuite Device Master versions prior to 1.0.5 can be exploited by an attacker to cause an elevation of...

9.8CVSS7.1AI score0.00466EPSS

Exploits0References2

OSV•added 2023/01/13 12:15 a.m.•1 views

CVE-2022-41778

Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-DataCollect service port without proper verification. An attacker could provide malicious serialized objects to execute arbitrary code upon deserialization...

8.8CVSS6.1AI score

Exploits0References1

OSV•added 2022/10/31 8:15 p.m.•1 views

CVE-2022-40202

The database backup function in Delta Electronics InfraSuite Device Master Versions 00.00.01a and prior lacks proper authentication. An attacker could provide malicious serialized objects which, when deserialized, could activate an opcode for a backup scheduling function without authentication...

9.8CVSS6AI score

Exploits0References1

Zero Day Initiative•added 2022/10/27 12:0 a.m.•19 views

Delta Industrial Automation InfraSuite Device Master CtrlLayerNWCmd_FileOperation Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Delta Industrial Automation InfraSuite Device Master. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CtrlLayerNWCmdFileOperation function...

7.5CVSS3.4AI score0.0347EPSS

Exploits0References1

Zero Day Initiative•added 2022/10/27 12:0 a.m.•22 views

Delta Industrial Automation InfraSuite Device Master AddNewUser Authentication Bypass Vulnerability

9.8CVSS3.5AI score0.00218EPSS

Exploits0References1

CNNVD•added 2022/10/25 12:0 a.m.•1 views

Delta Electronics InfraSuite Device Master 访问控制错误漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical devices from Delta Electronics Taiwan, China. An access control error vulnerability exists in versions prior to Delta Electronics InfraSuite Device Master 00.00.01a that stems from...

7.5CVSS7.3AI score0.00371EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by