Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CVE-2023-1144
Vulnerability Description
Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contains an improper access control vulnerability in which an attacker can use the Device-Gateway service and bypass authorization, which could result in privilege escalation.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Delta Electronics InfraSuite Device Master 安全漏洞
Vulnerability Description
Delta Electronics InfraSuite Device Master是中国台湾台达电子(Delta Electronics)公司的用于简化和自动化关键设备监控的设备。 Delta Electronics InfraSuite Device Master 1.0.5 版本之前存在安全漏洞,该漏洞源于包含一个不正确的访问控制漏洞,攻击者利用该漏洞通过使用Device-Gateway服务并绕过授权,从而导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A