The tag interface of Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to an attacker injecting formulas into the tag data. Those formulas may then be executed when it is opened with a spreadsheet application.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://us-cert.cisa.gov/ics/advisories/icsa-21-294-02 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2021-11-03T19:05:22.305682Z
Updated: 2024-09-16T20:41:42.309Z
Reserved: 2021-08-10T00:00:00
Link: CVE-2021-38424
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-11-03T20:15:08.827
Modified: 2021-11-05T16:21:45.980
Link: CVE-2021-38424
Redhat
No data.