Lucene search
China National Vulnerability DatabaseCNVD-2023-23889HistoryMar 29, 2023 - 12:00 a.m.
Delta Electronics InfraSuite Device Master Access Control Error Vulnerability (CNVD-2023-23889)
2023-03-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
delta electronics
infrasuite device master
access control
vulnerability
elevation of privilege
device-gateway service
authorization bypass
EPSS
0.001
Percentile
35.7%
Delta Electronics InfraSuite Device Master is an appliance from Delta Electronics used to simplify and automate critical device monitoring. versions prior to Delta Electronics InfraSuite Device Master 1.0.5 are vulnerable to an access control error vulnerability, which can be exploited by an attacker to cause an elevation of privilege by using the Device-Gateway service and bypassing authorization.
Related
zdi
zdi
nvd
nvd
CVE-2023-1144
2023-03-27 15:15:08
prion
prion
Improper access control
2023-03-27 15:15:00
cvelist
cvelist
CVE-2023-1144 CVE-2023-1144
2023-03-27 14:43:11
cve
cve
CVE-2023-1144
2023-03-27 15:15:08
ics
ics
Delta Electronics InfraSuite Device Master
2023-03-21 12:00:00