Lucene search
Piotr Bazydlo (@chudypb) of Trend Micro Zero Day InitiativeZDI-23-905HistoryJul 10, 2023 - 12:00 a.m.
Delta Electronics InfraSuite Device Master modifyusergroup Improper Access Control Privilege Escalation Vulnerability
2023-07-1000:00:00
Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
3
delta electronics
infrasuite device master
modifyusergroup
privilege escalation
vulnerability
authentication
improper access control
remote attackers
0.001 Low
EPSS
Percentile
49.9%
This vulnerability allows remote attackers to escalate privileges on affected installations of Delta Electronics InfraSuite Device Master. Authentication is required to exploit this vulnerability. The specific flaw exists within the modifyusergroup endpoint. The issue results from improper access control. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the user.
Related
prion
prion
Privilege escalation
2023-07-10 20:15:00
cvelist
cvelist
githubexploit
githubexploit
Exploit for Improper Access Control in Deltaww Infrasuite Device Master
2023-07-19 14:21:15
cve
cve
CVE-2023-30765
2023-07-10 20:15:15
nvd
nvd
CVE-2023-30765
2023-07-10 20:15:15
ics
ics
Delta Electronics InfraSuite Device Master
2023-06-29 12:00:00