Code Execution Vulnerability in Delta Electronics DIAScreen Product
CVE-2025-59297

6.8MEDIUM

Key Information:

Vendor: Delta Electronics
Status: Diascreen
Vendor: CVE Published:; 3 October 2025

🔔 Create Delta Electronics Vulnerability Alert

What is CVE-2025-59297?

Delta Electronics DIAScreen is susceptible to a code execution vulnerability resulting from inadequate validation of user-supplied files. When a user opens a malformed or malicious file, it can grant an attacker the ability to execute arbitrary code within the context of the currently running process. This risk necessitates immediate attention to ensure that all file inputs are thoroughly validated to prevent unauthorized actions.

Affected Version(s)

DIAScreen Windows 0 < 1.6.1

References

https://filecenter.deltaww.com/news/download/doc/Delta-PC...

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 3, 2025
Vulnerability Reserved
Sep 12, 2025

Credit

Natnael Samson working with Trend Micro Zero Day Initiative

Kevin Harwood of CISA

JSON