Vulnerabilities > Deltaww > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-17 | CVE-2023-0822 | Files or Directories Accessible to External Parties vulnerability in Deltaww Diaenergie The affected product DIAEnergie (versions prior to v1.9.03.001) contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality. | 8.8 |
| 2023-02-08 | CVE-2023-0249 | Unspecified vulnerability in Deltaww Diascreen Delta Electronics DIAScreen versions 1.2.1.23 and prior are vulnerable to out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. | 7.8 |
| 2023-02-08 | CVE-2023-0250 | Unspecified vulnerability in Deltaww Diascreen Delta Electronics DIAScreen versions 1.2.1.23 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code. | 7.8 |
| 2023-02-08 | CVE-2023-0251 | Unspecified vulnerability in Deltaww Diascreen Delta Electronics DIAScreen versions 1.2.1.23 and prior are vulnerable to a buffer overflow through improper restrictions of operations within memory, which could allow an attacker to remotely execute arbitrary code. | 7.8 |
| 2023-02-03 | CVE-2022-4634 | Out-of-bounds Write vulnerability in Deltaww Cncsoft and Screeneditor All versions prior to Delta Electronic’s CNCSoft version 1.01.34 (running ScreenEditor versions 1.01.5 and prior) are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code. | 7.8 |
| 2023-02-03 | CVE-2023-0123 | Out-of-bounds Write vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software. | 7.8 |
| 2023-02-03 | CVE-2023-0124 | Out-of-bounds Write vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to an out-of-bounds write, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software. | 7.8 |
| 2023-01-26 | CVE-2023-0444 | Unspecified vulnerability in Deltaww Infrasuite Device Master 00.00.02A A privilege escalation vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.02a. | 8.8 |
| 2023-01-13 | CVE-2022-41778 | Unspecified vulnerability in Deltaww Infrasuite Device Master 00.00.01A Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-DataCollect service port without proper verification. | 8.8 |
| 2022-12-16 | CVE-2022-2966 | Unspecified vulnerability in Deltaww Dopsoft Out-of-bounds Read vulnerability in Delta Electronics DOPSoft.This issue affects DOPSoft: All Versions. | 7.5 |