Home

Description

Delta Electronics EIP Builder version 1.11 is vulnerable to a File Parsing XML External Entity Processing Information Disclosure Vulnerability.

PUBLISHED Reserved 2025-08-18 | Published 2025-08-26 | Updated 2025-08-27 | Assigner Deltaww




MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Problem types

CWE-611 XXE - Improper Restriction of XML External Entity Reference

Product status

Default status
unaffected

Any version
affected

Credits

kimiya working with Trend Micro Zero Day Initiative reporter

Derek Vranes of CISA coordinator

References

filecenter.deltaww.com/...ation Disclosure Vulnerability.pdf

cve.org (CVE-2025-57704)

nvd.nist.gov (CVE-2025-57704)

Download JSON