Vulnerabilities > Deltaww > Infrasuite Device Master > 1.0.7

DATE CVE VULNERABILITY TITLE RISK
2023-11-30 CVE-2023-47279 Path Traversal vulnerability in Deltaww Infrasuite Device Master 1.0.7
In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying.
network
low complexity
deltaww CWE-22
7.5
7.5
2023-11-30 CVE-2023-39226 Unspecified vulnerability in Deltaww Infrasuite Device Master 1.0.7
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute arbitrary code through a single UDP packet.
network
low complexity
deltaww
critical
 9.8
9.8
2023-11-30 CVE-2023-46690 Path Traversal vulnerability in Deltaww Infrasuite Device Master 1.0.7
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an attacker to write to any file to any location of the filesystem, which could lead to remote code execution.
network
low complexity
deltaww CWE-22
8.8
8.8
2023-11-30 CVE-2023-47207 Deserialization of Untrusted Data vulnerability in Deltaww Infrasuite Device Master 1.0.7
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute code with local administrator privileges.
network
low complexity
deltaww CWE-502
critical
 9.8
9.8