Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Delta Electronics InfraSuite Device Master versions prior to 1.0.5 are affected by a deserialization vulnerability targeting the Device-DataCollect service, which could allow deserialization of requests prior to authentication, resulting in remote code execution.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
Delta Electronics InfraSuite Device Master 代码问题漏洞
Vulnerability Description
Delta Electronics InfraSuite Device Master是中国台湾台达电子(Delta Electronics)公司的用于简化和自动化关键设备监控的设备。 Delta Electronics InfraSuite Device Master 1.0.5 版本之前存在安全漏洞,该漏洞源于受针对 Device-DataCollect 服务的反序列化漏洞的影响,该漏洞可能允许在身份验证之前对请求进行反序列化,从而导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A