Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-1142

In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an attacker could use URL decoding to retrieve system files, credentials, and bypass authentication resulting in privilege escalation.

Published

2023-03-27T15:15:08.000

Last Modified

2024-11-21T07:38:32.363

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses
  • Type: Primary
    CWE-22
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application deltaww infrasuite_device_master < 1.0.5 Yes
References