First published: Wed Oct 30 2024(Updated: )
Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication.
Credit: ics-cert@hq.dhs.gov
Delta Electronics states that this issue was fixed by version 1.0.13 released in October 2024. Delta recommends updating to version 1.0.13 https://datacenter-softwarecenter.deltaww.com/Download/UPS/Software/InfraSuite_Device_Master_1.0.13.exe or later.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.