Cleartext Storage of Sensitive Information in Delta Electronics DIALink Application

Cleartext Storage of Sensitive Information in Delta Electronics DIALink Application

CVE-2021-38422 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Delta Electronics DIALink versions 1.2.4.0 and prior stores sensitive information in cleartext, which may allow an attacker to have extensive access to the application directory and escalate privileges.

Learn more about our Web Application Penetration Testing UK.