Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Delta Electronics DIALink
Vulnerability Description
Delta Electronics DIALink versions 1.2.4.0 and prior runs by default on HTTP, which may allow an attacker to be positioned between the traffic and perform a machine-in-the-middle attack to access information without authorization.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
Delta Electronics DiaLink 安全漏洞
Vulnerability Description
Delta Electronics DiaLink是中国Delta Electronics公司的用于为从数控机床和 PLC 控制的设备采集现场设备运行数据,为上层管理系统提供统一接口,实现数据可视化,有效揭示生产参数和运行状态。 Delta Electronics DIALink 存在安全漏洞,该漏洞源于受影响的产品默认在 HTTP 上运行,这可能允许攻击者定位在流量之间并执行中间机器攻击以未经授权访问信息。
CVSS Information
N/A
Vulnerability Type
N/A