Vulnerabilities

CVE-2021-38420

November 5, 2021

Delta Electronics DIALink versions 1.2.4.0 and prior default permissions give extensive permissions to low-privileged user accounts, which may allow an attacker to modify the installation directory and upload malicious files.

Summary:

Reference Links(if available):

https://us-cert.cisa.gov/ics/advisories/icsa-21-294-02

CVSS Score (if available)

v2: / MEDIUM

v3: /

Links to Exploits(if available)

Fortifying the Backbone: Cybersecurity for Critical Infrastructure

November 15, 2024

Bank of England U-Turns on Critical Third Party Vulnerability Disclosure Rules

November 15, 2024

Sitting Ducks DNS Attacks Threaten Over 1 Million Global Domains

November 15, 2024

API Security Threats: 83% of Companies Experience Security Incidents

November 15, 2024

Microsoft Power Pages: Misconfiguration Risks and Data Exposure

November 15, 2024

Summary:

Reference Links(if available):

CVSS Score (if available)

Links to Exploits(if available)

You may have missed

Fortifying the Backbone: Cybersecurity for Critical Infrastructure

Bank of England U-Turns on Critical Third Party Vulnerability Disclosure Rules

Sitting Ducks DNS Attacks Threaten Over 1 Million Global Domains

API Security Threats: 83% of Companies Experience Security Incidents

Microsoft Power Pages: Misconfiguration Risks and Data Exposure