Infrasuite Device Master Security Vulnerabilities and Issues — Infrasuite Device Master CVE List

Lucene search

DeltawwInfrasuite Device Master

2 matches found

CVE•added 2023/01/13 12:15 a.m.•58 views

CVE-2022-41778

Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-DataCollect service port without proper verification. An attacker could provide malicious serialized objects to execute arbitrary code upon deserialization.

9.8CVSS8.9AI score0.00116EPSS

CVE•added 2023/01/26 9:18 p.m.•45 views

CVE-2023-0444

A privilege escalation vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.02a. A default user 'User', which is in the 'Read Only User' group, can view the password of another default user 'Administrator', which is in the 'Administrator' group. This allows any lower privileged ...

8.8CVSS8.7AI score0.00243EPSS