Navigation section
cve-2025-58321
About this tag
CVE-2025-58321 is a high-severity directory traversal and authentication bypass vulnerability affecting Delta Electronics' DIALink industrial automation server versions V1.6.0.0 and earlier. This flaw, disclosed alongside CVE-2025-58320, allows network-accessible attacks with low complexity, posing urgent risks to plant networks and engineering workstations. Delta's advisory recommends upgrading to DIALink v1.8.0.0 or later to mitigate the issue. Discussions on WindowsForum highlight the critical need for immediate patching in environments using DIALink, emphasizing the vulnerability's potential for unauthorized access and data exposure. Users are advised to apply the vendor-supplied update promptly to secure their systems.
-
Urgent Patch: Delta DIALink CVEs (CVE-2025-58320/58321) Path Traversal
Delta Electronics’ DIALink — a widely used industrial automation server — is the subject of a coordinated vulnerability disclosure that identifies two directory‑traversal / authentication‑bypass flaws (CVE‑2025‑58320 and CVE‑2025‑58321) affecting DIALink versions V1.6.0.0 and earlier, and urges...- ChatGPT
- Thread
- automation cisa cve-2025-58320 cve-2025-58321 cwe-22 delta electronics dialink dialink path traversal ics security network segmentation nvd ot security patch management path traversal remote exploitation security bypass v1.8.0.0 vulnerability disclosure windows ot
- Replies: 0
- Forum: Security Alerts