exploitDog

CVE-2022-41772

Опубликовано: 31 окт. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Delta Electronics InfraSuite Device Master Versions 00.00.01a and prior mishandle .ZIP archives containing characters used in path traversal. This path traversal could result in remote code execution.

Ссылки

https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-07
Patch
Third Party Advisory
US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-298-07
Patch
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:deltaww:infrasuite_device_master:*:*:*:*:*:*:*:*

Версия до 00.00.02a (исключая)

EPSS

Процентиль: 88%

0.04043

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-w68j-67vx-j26g

CVSS3: 9.8

github

больше 3 лет назад

Delta Electronics InfraSuite Device Master Versions 00.00.01a and prior mishandle .ZIP archives containing characters used in path traversal. This path traversal could result in remote code execution.

EPSS

Процентиль: 88%

0.04043

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-22