Shodan
Vulnerabilities
Vulnerable Software
Deltaww:  >> Infrasuite Device Master  Security Vulnerabilities
CVE-2023-47279
In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-11-30
CVE-2023-46690
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an attacker to write to any file to any location of the filesystem, which could lead to remote code execution.
CVSS Score
8.8
EPSS Score
0.01
Published
2023-11-30
CVE-2023-47207
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute code with local administrator privileges.
CVSS Score
9.8
EPSS Score
0.028
Published
2023-11-30
CVE-2023-39226
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute arbitrary code through a single UDP packet.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-11-30
CVE-2023-30765
​Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation.
CVSS Score
8.8
EPSS Score
0.01
Published
2023-07-10
CVE-2023-34316
​An attacker could bypass the latest Delta Electronics InfraSuite Device Master (versions prior to 1.0.7) patch, which could allow an attacker to retrieve file contents.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-07-10
CVE-2023-34347
​Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contains classes that cannot be deserialized, which could allow an attack to remotely execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-07-10
CVE-2023-1142
In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an attacker could use URL decoding to retrieve system files, credentials, and bypass authentication resulting in privilege escalation.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-03-27
CVE-2023-1143
In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an attacker could use Lua scripts, which could allow an attacker to remotely execute arbitrary code.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-03-27
CVE-2023-1144
Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in privilege escalation.
CVSS Score
8.8
EPSS Score
0.0
Published
2023-03-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved