​Piotr Bazydlo

**Name of the Vulnerable Software and Affected Versions** Delta Electronics InfraSuite Device Master versions prior to 1.0.7 **Description** The issue is related to improper access controls that could allow an attacker to alter privilege management configurations, resulting in privilege escalation. **Recommendations** For versions prior to 1.0.7, update to version 1.0.7 or later to resolve the issue. As a temporary workaround, consider restricting access to privilege management configurations to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics InfraSuite Device Master versions prior to 1.0.7 **Description** An attacker could bypass the latest patch, allowing them to retrieve file contents due to improper access control. This issue affects Delta Electronics InfraSuite Device Master, enabling information disclosure. **Recommendations** For versions prior to 1.0.7, update to version 1.0.7 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.