exploitDog

CVE-2024-10456

Опубликовано: 30 окт. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication.

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-24-303-03

EPSS

Процентиль: 83%

0.02006

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-r2q9-52vc-q982

CVSS3: 9.8

github

больше 1 года назад

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication.

EPSS

Процентиль: 83%

0.02006

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-502