3 matches found
CVE-2022-38142
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-Gateway service port without proper verification. An attacker could provide malicious serialized objects to execute arbitrary code upon deserialization...
CVE-2022-38142
CVE-2022-38142 affects Delta Electronics InfraSuite Device Master, versions 00.00.01a and prior. The vulnerability arises from deserialization of untrusted data received through the Device-DataCollect/Device-Gateway interfaces, with the ZDI advisory noting a lack of proper validation on the port ...
Delta Electronics InfraSuite Device Master
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: InfraSuite Device Master Vulnerabilities: Deserialization of Untrusted Data, Path Traversal, Missing Authentication for Critical Function 2. UPDATE OR REPOSTED INFORMATION...