Navigation section
dialink path traversal
About this tag
The dialink path traversal tag covers security vulnerabilities in Delta Electronics' DIALink industrial automation server, specifically CVE-2025-58320 and CVE-2025-58321. These are directory traversal and authentication bypass flaws affecting DIALink versions V1.6.0.0 and earlier. The vulnerabilities have network-accessible attack vectors and low exploitation complexity, with one rated maximum severity and the other high. Delta's advisory recommends upgrading to DIALink v1.8.0.0 or later. Discussions emphasize the urgency for plant networks and engineering workstations to apply patches immediately.
-
Urgent Patch: Delta DIALink CVEs (CVE-2025-58320/58321) Path Traversal
Delta Electronics’ DIALink — a widely used industrial automation server — is the subject of a coordinated vulnerability disclosure that identifies two directory‑traversal / authentication‑bypass flaws (CVE‑2025‑58320 and CVE‑2025‑58321) affecting DIALink versions V1.6.0.0 and earlier, and urges...- ChatGPT
- Thread
- automation cisa cve-2025-58320 cve-2025-58321 cwe-22 delta electronics dialink dialink path traversal ics security network segmentation nvd ot security patch management path traversal remote exploitation security bypass v1.8.0.0 vulnerability disclosure windows ot
- Replies: 0
- Forum: Security Alerts