Vulnerabilities > Deltaww
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-18 | CVE-2023-43824 | Classic Buffer Overflow vulnerability in Deltaww Dopsoft 2.00.07 A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wTitleTextLen field of a DPS file. | 7.8 |
| 2024-01-18 | CVE-2023-5130 | Classic Buffer Overflow vulnerability in Deltaww Wplsoft 2.42.11 A buffer overflow vulnerability exists in Delta Electronics WPLSoft. | 8.8 |
| 2024-01-18 | CVE-2023-5131 | Out-of-bounds Write vulnerability in Deltaww Ispsoft 3.02.11 A heap buffer-overflow exists in Delta Electronics ISPSoft. | 8.8 |
| 2023-12-04 | CVE-2023-5944 | Out-of-bounds Write vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft is vulnerable to a stack-based buffer overflow, which may allow for arbitrary code execution if an attacker can lead a legitimate user to execute a specially crafted file. | 7.8 |
| 2023-11-30 | CVE-2023-47279 | Path Traversal vulnerability in Deltaww Infrasuite Device Master 1.0.7 In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying. | 7.5 |
| 2023-11-30 | CVE-2023-39226 | Unspecified vulnerability in Deltaww Infrasuite Device Master 1.0.7 In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute arbitrary code through a single UDP packet. | 9.8 |
| 2023-11-30 | CVE-2023-46690 | Path Traversal vulnerability in Deltaww Infrasuite Device Master 1.0.7 In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an attacker to write to any file to any location of the filesystem, which could lead to remote code execution. | 8.8 |
| 2023-11-30 | CVE-2023-47207 | Deserialization of Untrusted Data vulnerability in Deltaww Infrasuite Device Master 1.0.7 In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute code with local administrator privileges. | 9.8 |
| 2023-10-09 | CVE-2023-5461 | Cleartext Transmission of Sensitive Information vulnerability in Deltaww Wplsoft 2.51 A vulnerability was found in Delta Electronics WPLSoft 2.51. | 5.9 |
| 2023-10-09 | CVE-2023-5459 | Improper Resource Shutdown or Release vulnerability in Deltaww products A vulnerability has been found in Delta Electronics DVP32ES2 PLC 1.48 and classified as critical. | 7.5 |