Vendor CVEs
Delta Electronics
All CVEs
287 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-10594 | Cri | 0.72 | 9.8 | 0.69 | Jun 26, 2018 | Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators (DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM_5x0, AHSIM_5x1) utilize a fixed-length stack buffer where an unverified length value can be read from the network… | ||
| CVE-2026-1951 | Cri | 0.64 | 9.8 | 0.01 | Apr 24, 2026 | Delta Electronics AS320T has no checking of the length of the buffer with the directory name vulnerability. | ||
| CVE-2026-1949 | Cri | 0.64 | 9.8 | 0.01 | Apr 24, 2026 | Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service. | ||
| CVE-2025-62582 | Cri | 0.64 | 9.8 | 0.00 | Jan 16, 2026 | Delta Electronics DIAView has multiple vulnerabilities. | ||
| CVE-2025-62581 | Cri | 0.64 | 9.8 | 0.01 | Jan 16, 2026 | Delta Electronics DIAView has multiple vulnerabilities. | ||
| CVE-2025-3495 | Cri | 0.64 | 9.8 | 0.01 | Apr 16, 2025 | Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code. | ||
| CVE-2024-10456 | Cri | 0.64 | 9.8 | 0.18 | Oct 30, 2024 | Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication. | ||
| CVE-2024-3871 | Cri | 0.64 | 9.8 | 0.02 | Apr 16, 2024 | The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote… | ||
| CVE-2018-10623 | Cri | 0.64 | 9.8 | 0.04 | Jun 18, 2018 | Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory… | ||
| CVE-2018-10621 | Cri | 0.64 | 9.8 | 0.04 | Jun 18, 2018 | Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or… | ||
| CVE-2018-10617 | Cri | 0.64 | 9.8 | 0.04 | Jun 18, 2018 | Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or… | ||
| CVE-2018-8871 | Cri | 0.64 | 9.8 | 0.04 | May 25, 2018 | In Delta Electronics Automation TPEditor version 1.89 or prior, parsing a malformed program file may cause heap-based buffer overflow vulnerability, which may allow remote code execution. | ||
| CVE-2025-53417 | Cri | 0.61 | — | 0.11 | Aug 5, 2025 | DIAView (v4.2.0 and prior) - Directory Traversal Information Disclosure Vulnerability | ||
| CVE-2018-10636 | Hig | 0.58 | 8.8 | 0.10 | Aug 13, 2018 | CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an… | ||
| CVE-2018-7509 | Hig | 0.57 | 8.8 | 0.03 | May 4, 2018 | WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution. | ||
| CVE-2018-7507 | Hig | 0.57 | 8.8 | 0.03 | May 4, 2018 | WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash. | ||
| CVE-2018-7494 | Hig | 0.57 | 8.8 | 0.03 | May 4, 2018 | WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash. | ||
| CVE-2025-53418 | Hig | 0.56 | 8.6 | 0.00 | Aug 26, 2025 | Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability. | ||
| CVE-2025-53419 | Hig | 0.51 | 7.8 | 0.00 | Aug 26, 2025 | Delta Electronics COMMGR has Code Injection vulnerability. | ||
| CVE-2025-53416 | Hig | 0.51 | 7.8 | 0.00 | Jun 30, 2025 | Delta Electronics DTN Soft Project File Parsing Deserialization of Untrusted Data Remote Code Execution | ||
| CVE-2025-53415 | Hig | 0.51 | 7.8 | 0.00 | Jun 30, 2025 | Delta Electronics DTM Soft Project File Parsing Deserialization of Untrusted Data Remote Code Execution | ||
| CVE-2024-12677 | Hig | 0.51 | 7.8 | 0.00 | Dec 20, 2024 | Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code. | ||
| CVE-2018-14800 | Hig | 0.51 | 7.8 | 0.02 | Oct 3, 2018 | Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, by opening a crafted file, to cause the application to read past the boundary allocated to a stack object, which could allow execution of code under the context of the application. | ||
| CVE-2018-8839 | Hig | 0.51 | 7.8 | 0.00 | Apr 30, 2018 | Delta PMSoft versions 2.10 and prior have multiple stack-based buffer overflow vulnerabilities where a .ppm file can introduce a value larger than is readable by PMSoft's fixed-length stack buffer. This can cause the buffer to be overwritten, which may allow arbitrary code… | ||
| CVE-2018-5476 | Hig | 0.51 | 7.8 | 0.02 | Mar 15, 2018 | A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation DOPSoft, Version 4.00.01 or prior. Stack-based buffer overflow vulnerabilities caused by processing specially crafted .dop or .dpb files may allow an attacker to remotely execute… | ||
| CVE-2017-16751 | Hig | 0.51 | 7.8 | 0.02 | Mar 15, 2018 | A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. Stack-based buffer overflow vulnerabilities caused by processing specially crafted .dpb files may allow an attacker to remotely execute… | ||
| CVE-2017-16749 | Hig | 0.51 | 7.8 | 0.01 | Mar 15, 2018 | A Use-after-Free issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. Specially crafted .dpb files could exploit a use-after-free vulnerability. | ||
| CVE-2017-16747 | Hig | 0.51 | 7.8 | 0.01 | Mar 15, 2018 | An Out-of-bounds Write issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. Specially crafted .dpb files may cause the system to write outside the intended buffer area. | ||
| CVE-2017-16745 | Hig | 0.51 | 7.8 | 0.01 | Mar 15, 2018 | A Type Confusion issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. An access of resource using incompatible type ('type confusion') vulnerability may allow an attacker to execute remote code when processing… | ||
| CVE-2016-5805 | Hig | 0.51 | 7.8 | 0.02 | Feb 13, 2017 | An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to2.10.10. There are multiple instances of heap-based buffer overflows that may allow malicious files to cause the execution of… | ||
| CVE-2016-5802 | Hig | 0.51 | 7.8 | 0.01 | Feb 13, 2017 | An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to 2.10.10. Multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected… | ||
| CVE-2018-14824 | Med | 0.42 | 6.5 | 0.02 | Sep 27, 2018 | Delta Electronics Delta Industrial Automation PMSoft v2.11 or prior has an out-of-bounds read vulnerability that can be executed when processing project files, which may allow an attacker to read confidential information. | ||
| CVE-2025-58318 | Med | 0.38 | — | 0.00 | Sep 1, 2025 | Delta Electronics DIAView has an authentication bypass vulnerability. | ||
| CVE-2025-57704 | Med | 0.36 | 5.5 | 0.00 | Aug 26, 2025 | Delta Electronics EIP Builder version 1.11 is vulnerable to a File Parsing XML External Entity Processing Information Disclosure Vulnerability. | ||
| CVE-2021-38406 | 0.17 | — | 0.78 | KEV | Sep 17, 2021 | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of… | ||
| CVE-2023-1133 | 0.10 | — | 0.50 | Mar 27, 2023 | Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability in which the Device-status service listens on port 10100/ UDP by default. The service accepts the unverified UDP packets and deserializes the content, which could allow an unauthenticated… | |||
| CVE-2024-4548 | 0.07 | — | 0.29 | May 6, 2024 | An SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateHDMWYC' message, which is split into 4 fields using the '~' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth… | |||
| CVE-2022-4616 | 0.03 | — | 0.05 | Jan 12, 2023 | The webserver in Delta DX-3021 versions prior to 1.24 is vulnerable to command injection through the network diagnosis page. This vulnerability could allow a remote unauthenticated user to add files, delete files, and change file permissions. | |||
| CVE-2022-42139 | 0.02 | — | 0.18 | Dec 13, 2022 | Delta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL. | |||
| CVE-2024-42417 | 0.01 | — | 0.07 | Oct 3, 2024 | Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. An authenticated attacker may be able to exploit this issue to cause delay in the targeted product. | |||
| CVE-2022-42140 | 0.01 | — | 0.02 | Dec 13, 2022 | Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Command Injection via lform/net_diagnose. | |||
| CVE-2026-3631 | 0.00 | — | 0.01 | Mar 9, 2026 | Delta Electronics COMMGR2 has Buffer Over-read DoS vulnerability. | |||
| CVE-2026-3630 | 0.00 | — | 0.01 | Mar 9, 2026 | Delta Electronics COMMGR2 has Stack-based Buffer Overflow vulnerability. | |||
| CVE-2026-3094 | 0.00 | — | 0.00 | Mar 4, 2026 | Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. | |||
| CVE-2026-0975 | 0.00 | — | 0.01 | Jan 16, 2026 | Delta Electronics DIAView has Command Injection vulnerability. | |||
| CVE-2025-59301 | 0.00 | — | 0.00 | Dec 22, 2025 | Delta Electronics DVP15MC11T lacks proper validation of the modbus/tcp packets and can lead to denial of service. | |||
| CVE-2025-59300 | 0.00 | — | 0.00 | Oct 3, 2025 | Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. | |||
| CVE-2025-59299 | 0.00 | — | 0.00 | Oct 3, 2025 | Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. | |||
| CVE-2025-59298 | 0.00 | — | 0.00 | Oct 3, 2025 | Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. | |||
| CVE-2025-59297 | 0.00 | — | 0.00 | Oct 3, 2025 | Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process. |
- risk 0.72cvss 9.8epss 0.69
Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators (DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM_5x0, AHSIM_5x1) utilize a fixed-length stack buffer where an unverified length value can be read from the network…
- risk 0.64cvss 9.8epss 0.01
Delta Electronics AS320T has no checking of the length of the buffer with the directory name vulnerability.
- risk 0.64cvss 9.8epss 0.01
Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service.
- risk 0.64cvss 9.8epss 0.00
Delta Electronics DIAView has multiple vulnerabilities.
- risk 0.64cvss 9.8epss 0.01
Delta Electronics DIAView has multiple vulnerabilities.
- risk 0.64cvss 9.8epss 0.01
Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs (CWE-338). An attacker could easily brute force a session ID and load and execute arbitrary code.
- risk 0.64cvss 9.8epss 0.18
Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication.
- risk 0.64cvss 9.8epss 0.02
The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote…
- risk 0.64cvss 9.8epss 0.04
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory…
- risk 0.64cvss 9.8epss 0.04
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or…
- risk 0.64cvss 9.8epss 0.04
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value larger than the buffer can be read from a .dpa file into the buffer, causing the buffer to be overwritten. This may allow remote code execution or…
- risk 0.64cvss 9.8epss 0.04
In Delta Electronics Automation TPEditor version 1.89 or prior, parsing a malformed program file may cause heap-based buffer overflow vulnerability, which may allow remote code execution.
- risk 0.61cvss —epss 0.11
DIAView (v4.2.0 and prior) - Directory Traversal Information Disclosure Vulnerability
- risk 0.58cvss 8.8epss 0.10
CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an…
- risk 0.57cvss 8.8epss 0.03
WPLSoft in Delta Electronics versions 2.45.0 and prior writes data from a file outside the bounds of the intended buffer space, which could cause memory corruption or may allow remote code execution.
- risk 0.57cvss 8.8epss 0.03
WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash.
- risk 0.57cvss 8.8epss 0.03
WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash.
- risk 0.56cvss 8.6epss 0.00
Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability.
- risk 0.51cvss 7.8epss 0.00
Delta Electronics COMMGR has Code Injection vulnerability.
- risk 0.51cvss 7.8epss 0.00
Delta Electronics DTN Soft Project File Parsing Deserialization of Untrusted Data Remote Code Execution
- risk 0.51cvss 7.8epss 0.00
Delta Electronics DTM Soft Project File Parsing Deserialization of Untrusted Data Remote Code Execution
- risk 0.51cvss 7.8epss 0.00
Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code.
- risk 0.51cvss 7.8epss 0.02
Delta Electronics ISPSoft version 3.0.5 and prior allow an attacker, by opening a crafted file, to cause the application to read past the boundary allocated to a stack object, which could allow execution of code under the context of the application.
- risk 0.51cvss 7.8epss 0.00
Delta PMSoft versions 2.10 and prior have multiple stack-based buffer overflow vulnerabilities where a .ppm file can introduce a value larger than is readable by PMSoft's fixed-length stack buffer. This can cause the buffer to be overwritten, which may allow arbitrary code…
- risk 0.51cvss 7.8epss 0.02
A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation DOPSoft, Version 4.00.01 or prior. Stack-based buffer overflow vulnerabilities caused by processing specially crafted .dop or .dpb files may allow an attacker to remotely execute…
- risk 0.51cvss 7.8epss 0.02
A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. Stack-based buffer overflow vulnerabilities caused by processing specially crafted .dpb files may allow an attacker to remotely execute…
- risk 0.51cvss 7.8epss 0.01
A Use-after-Free issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. Specially crafted .dpb files could exploit a use-after-free vulnerability.
- risk 0.51cvss 7.8epss 0.01
An Out-of-bounds Write issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. Specially crafted .dpb files may cause the system to write outside the intended buffer area.
- risk 0.51cvss 7.8epss 0.01
A Type Confusion issue was discovered in Delta Electronics Delta Industrial Automation Screen Editor, Version 2.00.23.00 or prior. An access of resource using incompatible type ('type confusion') vulnerability may allow an attacker to execute remote code when processing…
- risk 0.51cvss 7.8epss 0.02
An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to2.10.10. There are multiple instances of heap-based buffer overflows that may allow malicious files to cause the execution of…
- risk 0.51cvss 7.8epss 0.01
An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to 2.10.10. Multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected…
- risk 0.42cvss 6.5epss 0.02
Delta Electronics Delta Industrial Automation PMSoft v2.11 or prior has an out-of-bounds read vulnerability that can be executed when processing project files, which may allow an attacker to read confidential information.
- risk 0.38cvss —epss 0.00
Delta Electronics DIAView has an authentication bypass vulnerability.
- risk 0.36cvss 5.5epss 0.00
Delta Electronics EIP Builder version 1.11 is vulnerable to a File Parsing XML External Entity Processing Information Disclosure Vulnerability.
- risk 0.17cvss —epss 0.78
Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. An attacker could leverage this vulnerability to execute code in the context of…
- CVE-2023-1133Mar 27, 2023risk 0.10cvss —epss 0.50
Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability in which the Device-status service listens on port 10100/ UDP by default. The service accepts the unverified UDP packets and deserializes the content, which could allow an unauthenticated…
- CVE-2024-4548May 6, 2024risk 0.07cvss —epss 0.29
An SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateHDMWYC' message, which is split into 4 fields using the '~' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth…
- CVE-2022-4616Jan 12, 2023risk 0.03cvss —epss 0.05
The webserver in Delta DX-3021 versions prior to 1.24 is vulnerable to command injection through the network diagnosis page. This vulnerability could allow a remote unauthenticated user to add files, delete files, and change file permissions.
- CVE-2022-42139Dec 13, 2022risk 0.02cvss —epss 0.18
Delta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL.
- CVE-2024-42417Oct 3, 2024risk 0.01cvss —epss 0.07
Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. An authenticated attacker may be able to exploit this issue to cause delay in the targeted product.
- CVE-2022-42140Dec 13, 2022risk 0.01cvss —epss 0.02
Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Command Injection via lform/net_diagnose.
- CVE-2026-3631Mar 9, 2026risk 0.00cvss —epss 0.01
Delta Electronics COMMGR2 has Buffer Over-read DoS vulnerability.
- CVE-2026-3630Mar 9, 2026risk 0.00cvss —epss 0.01
Delta Electronics COMMGR2 has Stack-based Buffer Overflow vulnerability.
- CVE-2026-3094Mar 4, 2026risk 0.00cvss —epss 0.00
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
- CVE-2026-0975Jan 16, 2026risk 0.00cvss —epss 0.01
Delta Electronics DIAView has Command Injection vulnerability.
- CVE-2025-59301Dec 22, 2025risk 0.00cvss —epss 0.00
Delta Electronics DVP15MC11T lacks proper validation of the modbus/tcp packets and can lead to denial of service.
- CVE-2025-59300Oct 3, 2025risk 0.00cvss —epss 0.00
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
- CVE-2025-59299Oct 3, 2025risk 0.00cvss —epss 0.00
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
- CVE-2025-59298Oct 3, 2025risk 0.00cvss —epss 0.00
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
- CVE-2025-59297Oct 3, 2025risk 0.00cvss —epss 0.00
Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
Page 1 of 6