Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 11:46 p.m.22 views

CVE-2022-41657

Delta Electronics InfraSuite Device Master Versions 00.00.01a and prior allow attacker provided data already serialized into memory to be used in file operation application programmable interfaces APIs. This could create arbitrary files, which could be used in API operations and could ultimately...

9.8CVSS7.6AI score0.20898EPSS
Exploits0References1
CVE
CVE
added 2022/10/31 7:24 p.m.65 views

CVE-2022-41657

Delta Electronics InfraSuite Device Master (versions 00.00.01a and earlier) is affected by multiple CVEs describing an in-memory deserialization/vector issue in file operation APIs that can lead to arbitrary file creation and remote code execution. ZDI advisories for CtrlLayerNWCmd_FileOperation ...

9.8CVSS9.6AI score0.20898EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/31 7:24 p.m.6 views

CVE-2022-41657

Delta Electronics InfraSuite Device Master Versions 00.00.01a and prior allow attacker provided data already serialized into memory to be used in file operation application programmable interfaces APIs. This could create arbitrary files, which could be used in API operations and could ultimately...

9.8CVSS9.7AI score0.20898EPSS
Exploits0References1
ICS
ICS
added 2022/10/25 12:0 a.m.57 views

Delta Electronics InfraSuite Device Master

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: InfraSuite Device Master Vulnerabilities: Deserialization of Untrusted Data, Path Traversal, Missing Authentication for Critical Function 2. UPDATE OR REPOSTED INFORMATION...

9.8CVSS10AI score0.24945EPSS
Exploits0References5
Rows per page
Query Builder