Diascreen

diascreen

Vendor: Deltaww • 14 CVEs

CVEs (14)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-59300 1Deltaww 1Diascreen Oct 8, 2025 Oct 3, 2025 6.8 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
CVE-2025-59299 1Deltaww 1Diascreen Oct 8, 2025 Oct 3, 2025 6.8 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
CVE-2025-59298 1Deltaww 1Diascreen Oct 8, 2025 Oct 3, 2025 6.8 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
CVE-2025-59297 1Deltaww 1Diascreen Oct 8, 2025 Oct 3, 2025 6.8 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process.
CVE-2024-47131 1Deltaww 1Diascreen Jan 30, 2025 Nov 11, 2024 8.4 HIGH· v4 7.8 HIGH· v3 N/A· v2 If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetObjectInfo can be exploited, allowing the attacker to remotely exe...Show more If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetObjectInfo can be exploited, allowing the attacker to remotely execute arbitrary code.Show less
CVE-2024-39605 1Deltaww 1Diascreen Jan 30, 2025 Nov 11, 2024 8.4 HIGH· v4 7.8 HIGH· v3 N/A· v2 If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetParameter can be exploited, allowing the attacker to remotely exec...Show more If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetParameter can be exploited, allowing the attacker to remotely execute arbitrary code.Show less
CVE-2024-39354 1Deltaww 1Diascreen Jan 30, 2025 Nov 11, 2024 8.4 HIGH· v4 7.8 HIGH· v3 N/A· v2 If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in CEtherIPTagItem can be exploited, allowing the attacker to remotely exec...Show more If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in CEtherIPTagItem can be exploited, allowing the attacker to remotely execute arbitrary code.Show less
CVE-2024-7502 1Deltaww 1Diascreen Aug 12, 2024 Aug 6, 2024 8.5 HIGH· v4 7.8 HIGH· v3 N/A· v2 A crafted DPA file could force Delta Electronics DIAScreen to overflow a stack-based buffer, which could allow an attacker to execute arbitrary code.
CVE-2023-5068 1Deltaww 1Diascreen Nov 21, 2024 Sep 21, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen may write past the end of an allocated buffer while parsing a specially crafted input file. This could allow an attacker to execute code in the context of the current process.
CVE-2023-0251 1Deltaww 1Diascreen Nov 21, 2024 Feb 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen versions 1.2.1.23 and prior are vulnerable to a buffer overflow through improper restrictions of operations within memory, which could allow an attacker to remotely execute arbitrary code.
CVE-2023-0250 1Deltaww 1Diascreen Nov 21, 2024 Feb 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen versions 1.2.1.23 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code.
CVE-2023-0249 1Deltaww 1Diascreen Nov 21, 2024 Feb 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Delta Electronics DIAScreen versions 1.2.1.23 and prior are vulnerable to out-of-bounds write, which may allow an attacker to remotely execute arbitrary code.
CVE-2021-32969 1Deltaww 1Diascreen Nov 21, 2024 May 24, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Delta Electronics DIAScreen versions prior to 1.1.0 are vulnerable to an out-of-bounds write condition, which may result in a system crash or allow an attacker to remotely execute arbitrary code.
CVE-2021-32965 1Deltaww 1Diascreen Nov 21, 2024 May 24, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Delta Electronics DIAScreen versions prior to 1.1.0 are vulnerable to type confusion, which may allow an attacker to remotely execute arbitrary code.