CVE-2022-41776 in InfraSuite Device Masterinformation

Résumé

par MITRE • 01/11/2022

Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to trigger the WriteConfiguration method, which could allow an attacker to provide new values for user configuration files such as UserListInfo.xml. This could lead to the changing of administrative passwords.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsable

ICS-CERT

Réserver

29/09/2022

Divulgation

01/11/2022

Modérer

accepté

Entrée

VDB-212360

CPE

prêt

EPSS

0.00511

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!