CVE-2022-2660 — CVSS 9.8 (critical): Delta Industrial Automation DIALink versions 1.4.0.0 and prior are vulnerable to the use of a hard-coded cryptographic key which could…
CVE-2021-38418 — CVSS 8.8 (high): Delta Electronics DIALink versions 1.2.4.0 and prior runs by default on HTTP, which may allow an attacker to be positioned between the…
CVE-2022-2969 — CVSS 8.1 (high): Delta Industrial Automation DIALink versions prior to v1.5.0.0 Beta 4 uses an external input to construct a pathname intended to identify a…
CVE-2021-38416 — CVSS 7.8 (high): Delta Electronics DIALink versions 1.2.4.0 and prior insecurely loads libraries, which may allow an attacker to use DLL hijacking and…
CVE-2021-38420 — CVSS 7.8 (high): Delta Electronics DIALink versions 1.2.4.0 and prior default permissions give extensive permissions to low-privileged user accounts, which…
CVE-2021-38422 — CVSS 7.8 (high): Delta Electronics DIALink versions 1.2.4.0 and prior stores sensitive information in cleartext, which may allow an attacker to have…
CVE-2021-38424 — CVSS 5.9 (medium): The tag interface of Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to an attacker injecting formulas into the tag…
CVE-2021-38488 — CVSS 5.5 (medium): Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject…
CVE-2021-38428 — CVSS 5.5 (medium): Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject…
CVE-2021-38403 — CVSS 5.5 (medium): Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject…
CVE-2021-38411 — CVSS 5.5 (medium): Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject…
CVE-2021-38407 — CVSS 5.5 (medium): Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject…