Vulnerabilities > CVE-2021-38422 - Unspecified vulnerability in Deltaww Dialink 1.2.4.0

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

deltaww

NVD

Published: 2021-11-03

Updated: 2024-11-21

Summary

Delta Electronics DIALink versions 1.2.4.0 and prior stores sensitive information in cleartext, which may allow an attacker to have extensive access to the application directory and escalate privileges.

Vulnerable Configurations

Part	Description	Count
Application	Deltaww Deltaww Dialink 1.2.4.0	1

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-294-02
https://us-cert.cisa.gov/ics/advisories/icsa-21-294-02