Vulnerability Details CVE-2023-1137
Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability in which a low-level user could extract files and plaintext credentials of administrator users, resulting in privilege escalation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.6%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-1137
-
cpe:2.3:a:deltaww:infrasuite_device_master:-
-
cpe:2.3:a:deltaww:infrasuite_device_master:00.00.01a
-
cpe:2.3:a:deltaww:infrasuite_device_master:00.00.02a