Lucene search
K

295 matches found

Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.7 views

PT-2022-26026 · Delta Electronics · Infrasuite Device Master

Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions 00.00.01a and prior Description: The issue concerns a lack of proper authentication for functions that create and modify user groups. An attacker could exploit this by providing malicious...

9.8CVSS7.6AI score0.0064EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2022/10/27 12:0 a.m.21 views

Delta Industrial Automation InfraSuite Device Master ModifyPrivByID Missing Authentication Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges or create a denial-of-service condition on affected installations of Delta Industrial Automation InfraSuite Device Master. Authentication is not required to create a denial-of-service condition. Authentication is required to achiev...

8.8CVSS4.2AI score0.00686EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/10/27 12:0 a.m.23 views

Delta Industrial Automation InfraSuite Device Master APRunning Missing Authentication Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Delta Industrial Automation InfraSuite Device Master. Authentication is not required to exploit this vulnerability. The specific flaw exists within the gateway endpoint, which listens on TCP...

7.5CVSS2.7AI score0.00589EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.8 views

PT-2022-24234 · Delta Electronics · Infrasuite Device Master

Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions 00.00.01a and prior Description: The issue concerns the deserialization of user-supplied data provided through the Device-Gateway service port without proper verification. An attacker could...

9.8CVSS9.7AI score0.18212EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/10/27 12:0 a.m.8 views

PT-2022-26001 · Delta Electronics · Infrasuite Device Master

Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions 00.00.01a and prior Description: The issue lacks authentication for a function that changes group privileges. An attacker could use this to create a denial-of-service state or escalate their...

8.8CVSS8.8AI score0.00686EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2022/10/27 12:0 a.m.23 views

Delta Industrial Automation InfraSuite Device Master CtrlLayerNWCmd_FileOperation Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Delta Industrial Automation InfraSuite Device Master. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CtrlLayerNWCmdFileOperation function...

7.5CVSS3.4AI score0.20898EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.28 views

Delta Electronics InfraSuite Device Master 路径遍历漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical equipment from Delta Electronics Taiwan, China. A path traversal vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which stems from allowi...

9.8CVSS8.6AI score0.20898EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.5 views

Delta Electronics InfraSuite Device Master 代码问题漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical equipment from Delta Electronics Taiwan, China. A code issue vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which arises from...

9.8CVSS8.8AI score0.01053EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.3 views

Delta Electronics InfraSuite Device Master 代码问题漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical equipment from Delta Electronics Taiwan, China. A code issue vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which stems from a lack of...

9.8CVSS8.4AI score0.01035EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.5 views

Delta Electronics InfraSuite Device Master 路径遍历漏洞

Delta Electronics InfraSuite Device Master is used to simplify and automate the monitoring of critical equipment by Delta Electronics of Taiwan, China. A path traversal vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which stems from incorrectly...

9.8CVSS8.8AI score0.24945EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.5 views

Delta Electronics InfraSuite Device Master 访问控制错误漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical equipment from Delta Electronics Taiwan, China. An access control error vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which stems from...

9.1CVSS8.3AI score0.00589EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/26 12:0 a.m.7 views

Delta Electronics InfraSuite Device Master 访问控制错误漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical equipment from Delta Electronics, Taiwan, China. A security vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which stems from a lack of...

8.8CVSS7.8AI score0.00686EPSS
Exploits0References3
CISA
CISA
added 2022/10/25 12:0 a.m.13 views

CISA Releases Eight Industrial Control Systems Advisories

CISA has released eight 8 Industrial Control Systems ICS advisories on October 25, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for...

0.8AI score
Exploits0References8
CNNVD
CNNVD
added 2022/10/25 12:0 a.m.6 views

Delta Electronics InfraSuite Device Master 访问控制错误漏洞

Delta Electronics InfraSuite Device Master is used to simplify and automate critical device monitoring by Delta Electronics of Taiwan, China. An access control error vulnerability exists in versions prior to Delta Electronics InfraSuite Device Master 00.00.01a, which stems from a lack of proper...

9.8CVSS7.4AI score0.0064EPSS
Exploits0References4
ICS
ICS
added 2022/10/25 12:0 a.m.56 views

Delta Electronics InfraSuite Device Master

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: InfraSuite Device Master Vulnerabilities: Deserialization of Untrusted Data, Path Traversal, Missing Authentication for Critical Function 2. UPDATE OR REPOSTED INFORMATION...

9.8CVSS10AI score0.24945EPSS
Exploits0References5
Rows per page
Query Builder