CVE-2023-30765

Опубликовано: 10 июл. 2023

Источник: nvd

CVSS3: 8.8

CVSS3: 9.8

EPSS Низкий

Описание

Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation.

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-23-180-01
Mitigation
Patch
Third Party Advisory
US Government Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-180-01
Mitigation
Patch
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:deltaww:infrasuite_device_master:*:*:*:*:*:*:*:*

Версия до 1.0.7 (исключая)

EPSS

Процентиль: 71%

0.00677

Низкий

8.8 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-269

Связанные уязвимости

GHSA-v5c3-34xr-4vp7

CVSS3: 8.8

github

больше 2 лет назад

?Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation.

EPSS

Процентиль: 71%

0.00677

Низкий

8.8 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-269