← Volver a CVEs
CVE-2023-30765
HIGH8.8
Descripcion
Delta Electronics InfraSuite Device Master versions prior to 1.0.7 contain improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation.
Detalles CVE
Puntuacion CVSS v3.18.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado7/10/2023
Ultima modificacion1/27/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
deltaww:infrasuite_device_master
Debilidades (CWE)
CWE-269
Referencias
https://www.cisa.gov/news-events/ics-advisories/icsa-23-180-01(ics-cert@hq.dhs.gov)
https://www.cisa.gov/news-events/ics-advisories/icsa-23-180-01(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.