Unauthenticated User Information Disclosure and Credential Theft Vulnerability in Delta Electronics InfraSuite Device Master v.1.0.7

Unauthenticated User Information Disclosure and Credential Theft Vulnerability in Delta Electronics InfraSuite Device Master v.1.0.7

CVE-2023-47279 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying.

Learn more about our User Device Pen Test.