exploitDog

GHSA-ggfq-85jm-276p

Опубликовано: 27 мар. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in privilege escalation.

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in privilege escalation.

Ссылки

EPSS

Процентиль: 2%

0.00015

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2023-1144

CVSS3: 8.8

nvd

почти 3 года назад

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in privilege escalation.

BDU:2023-02110

CVSS3: 8.8

fstec

почти 3 года назад

Уязвимость службы Device-Gateway программного продукта для мониторинга устройств в реальном времени Delta Electronics InfraSuite Device Master, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 2%

0.00015

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863