CVE-2022-41629

CVE-2022-41629

Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to access the aprunning endpoint, which could allow an attacker to retrieve any file from the “RunningConfigs� directory. The attacker could then view and modify configuration files such as UserListInfo.xml, which would allow them to see existing administrative passwords.

Source: CVE-2022-41629

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다