CVE-2022-41776
CVE-2022-41776
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.5EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
31 oct 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to trigger the WriteConfiguration method, which could allow an attacker to provide new values for user configuration files such as UserListInfo.xml. This could lead to the changing of administrative passwords.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Productos afectados
Delta Electronics · InfraSuite Device Master¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →