High severity7.5NVD Advisory· Published Oct 31, 2022· Updated Jun 17, 2026
CVE-2022-41629
CVE-2022-41629
Description
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to access the aprunning endpoint, which could allow an attacker to retrieve any file from the “RunningConfigs” directory. The attacker could then view and modify configuration files such as UserListInfo.xml, which would allow them to see existing administrative passwords.
Affected products
2<=00.00.01a+ 1 more
- (no CPE)range: <=00.00.01a
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- www.cisa.gov/uscert/ics/advisories/icsa-22-298-07nvdPatchThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.