File Parsing Deserialization of Untrusted Data in DTM Soft

August 4, 2025 invoker category_cve

CVE Details

Basic Information

Title File Parsing Deserialization of Untrusted Data in DTM Soft
Type cve
Published 2025-08-05T02:28:22.839Z
Modified 2025-08-05T02:28:22.839Z

Product Information

Vendor Delta Electronics
Product DIAView
Version 0

CVSS Information

Base Score 9.3 (CRITICAL)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

AI Analysis

AI Description A vulnerability in DIAView allows attackers to access sensitive files due to directory traversal. This could expose confidential information.
AI Severity Critical
AI Vendor Delta Electronics
AI Product DIAView
AI Version 4.2.0 and prior

Affected Products

  • Delta Electronics DIAView 0

Additional Information

CWE List CWE-35
Source Deltaww

Description

DIAView (v4.2.0 and prior) – Directory Traversal Information Disclosure Vulnerability

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.