Vulnerabilities > Deltaww > Infrasuite Device Master > 1.0.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-07-10 | CVE-2023-30765 | Improper Privilege Management vulnerability in Deltaww Infrasuite Device Master 00.00.01A/00.00.02A/1.0.5 ?Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation. | 9.8 |
2023-07-10 | CVE-2023-34316 | Files or Directories Accessible to External Parties vulnerability in Deltaww Infrasuite Device Master 00.00.01A/00.00.02A/1.0.5 ?An attacker could bypass the latest Delta Electronics InfraSuite Device Master (versions prior to 1.0.7) patch, which could allow an attacker to retrieve file contents. | 7.5 |
2023-07-10 | CVE-2023-34347 | Unspecified vulnerability in Deltaww Infrasuite Device Master 00.00.01A/00.00.02A/1.0.5 ?Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contains classes that cannot be deserialized, which could allow an attack to remotely execute arbitrary code. | 9.8 |