File Parsing Vulnerability in Delta Electronics EIP Builder Software
CVE-2025-57704

5.5MEDIUM

Key Information:

Vendor: Delta Electronics
Status: Eip Builder
Vendor: CVE Published:; 26 August 2025

🔔 Create Delta Electronics Vulnerability Alert

What is CVE-2025-57704?

Delta Electronics EIP Builder version 1.11 is susceptible to a File Parsing vulnerability that arises from improper handling of XML input. This flaw can lead to XML External Entity (XXE) processing, potentially allowing an attacker to disclose sensitive information from the host system. Effective exploitation of this vulnerability could result in unauthorized access to confidential data, significantly impacting the security posture of the affected systems. It is crucial for users to implement recommended patches and apply security best practices to mitigate potential risks associated with this vulnerability.

Affected Version(s)

EIP Builder Windows 0 <= 1.11

References

https://filecenter.deltaww.com/news/download/doc/Delta-PC...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 26, 2025
Vulnerability Reserved
Aug 18, 2025