Описание
The tag interface of Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to an attacker injecting formulas into the tag data. Those formulas may then be executed when it is opened with a spreadsheet application.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.4.0 (включая)
cpe:2.3:a:deltaww:dialink:*:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00114
Низкий
5.9 Medium
CVSS3
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-1236
Связанные уязвимости
github
больше 3 лет назад
The tag interface of Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to an attacker injecting formulas into the tag data. Those formulas may then be executed when it is opened with a spreadsheet application.
EPSS
Процентиль: 30%
0.00114
Низкий
5.9 Medium
CVSS3
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-1236