Remote Code Execution Vulnerability in Delta Electronics DTN Soft
CVE-2024-8255
9.8CRITICAL
Summary
Delta Electronics DTN Soft, specifically version 2.0.1 and earlier, contains a vulnerability that permits attackers to perform remote code execution. This vulnerability arises from improperly handling deserialization of untrusted data, potentially allowing malicious actors to manipulate or execute arbitrary code on affected systems. Users and organizations utilizing this software should take prompt action to mitigate risks associated with this vulnerability, including updating to the latest software versions and implementing necessary security measures.
Affected Version(s)
DTN Soft 0 <= 2.0.1
References
CVSS V3.1
Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
kimiya working with Trend Micro Zero Day Initiative