CVE-2021-38416

Summary

Delta Electronics DIALink versions 1.2.4.0 and prior insecurely loads libraries, which may allow an attacker to use DLL hijacking and takeover the system where the software is installed.

Affected Software

VendorProductVersion RangeStatus
Delta ElectronicsDIALinkAll <= 1.2.4.0affected

Weaknesses

  • CWE-427: CWE-427 Uncontrolled Search Path Element

Workarounds

Delta Electronics is aware of the vulnerabilities and is currently working on an update.

ADP Enrichment

CVE Program Container

Additional References

References