Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-2660
HistoryDec 13, 2022 - 10:15 p.m.

CVE-2022-2660

2022-12-1322:15:09
CWE-798
CWE-321
[email protected]
web.nvd.nist.gov
3
delta industrial automation
dialink
hardcoded cryptographic key
sensitive data
attacker

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

54.8%

JSON

Delta Industrial Automation DIALink versions 1.4.0.0 and prior areΒ vulnerable to the use of a hard-coded cryptographic key which could allow an attacker to decrypt sensitive data and compromise the machine.

Affected configurations

Nvd
Node
deltawwdialinkRange≀1.4.0.0
VendorProductVersionCPE
deltawwdialink*cpe:2.3:a:deltaww:dialink:*:*:*:*:*:*:*:*

Related

nessus 1
prion 1
zdi 1
ics 1
cve 1
cvelist 1
nessus
nessus
Delta Electronics DIALink Known Cryptographic Key Authentication Bypass (CVE-2022-2660)
2022-10-05 00:00:00
prion
prion
Hardcoded credentials
2022-12-13 22:15:00
zdi
zdi
Delta Industrial Automation DIALink Hardcoded Cryptographic Key Authentication Bypass Vulnerability
2022-08-24 00:00:00
ics
ics
Delta Industrial Automation DIALink
2022-08-24 12:00:00
cve
cve
CVE-2022-2660
2022-12-13 22:15:09
cvelist
cvelist
CVE-2022-2660
2022-12-13 21:26:57

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.002

Percentile

54.8%

JSON
Related for NVD:CVE-2022-2660
nessus1prion1zdi1ics1cve1cvelist1