Details of VAR-202508-3091

ID

VAR-202508-3091

CVE

CVE-2025-57704

TITLE

Delta Electronics EIP Builder EIP File Parsing XML External Entity Processing Information Disclosure Vulnerability

Trust: 0.7

sources: ZDI: ZDI-25-928

DESCRIPTION

Delta Electronics EIP Builder version 1.11 is vulnerable to a File Parsing XML External Entity Processing Information Disclosure Vulnerability. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of EIP files. Due to the improper restriction of XML External Entity (XXE) references, a crafted document specifying a URI causes the XML parser to access the URI and embed the contents back into the XML document for further processing. An attacker can leverage this vulnerability to disclose information in the context of the current process

Trust: 2.07

sources: NVD: CVE-2025-57704 // ZDI: ZDI-25-928 // CNVD: CNVD-2025-22952

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-22952

AFFECTED PRODUCTS

vendor:	delta	model:	eip builder	scope:	-	version:	-	Trust: 0.7
vendor:	delta	model:	electronics eip builder	scope:	lte	version:	<=1.11	Trust: 0.6

sources: ZDI: ZDI-25-928 // CNVD: CNVD-2025-22952

CVSS

SEVERITY

CVSSV2

CVSSV3

759f5e80-c8e1-4224-bead-956d7b33c98b:	CVE-2025-57704
value:	MEDIUM
Trust: 1.0
ZDI:	CVE-2025-57704
value:	MEDIUM
Trust: 0.7
CNVD:	CNVD-2025-22952
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2025-22952
severity:	MEDIUM
baseScore:	4.9
vectorString:	AV:L/AC:L/AU:N/C:C/I:N/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

759f5e80-c8e1-4224-bead-956d7b33c98b:	CVE-2025-57704
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.1
Trust: 1.0
ZDI:	CVE-2025-57704
baseSeverity:	MEDIUM
baseScore:	5.5
vectorString:	AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	1.8
impactScore:	3.6
version:	3.0
Trust: 0.7

sources: ZDI: ZDI-25-928 // CNVD: CNVD-2025-22952 // NVD: CVE-2025-57704

PROBLEMTYPE DATA

problemtype:

CWE-611

Trust: 1.0

sources: NVD: CVE-2025-57704

PATCH

title:	Delta Electronics has issued an update to correct this vulnerability.	url:	https://www.cisa.gov/news-events/ics-advisories/icsa-25-245-01	Trust: 0.7
title:	Patch for Delta Electronics EIP Builder XML External Entity Injection Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/738731	Trust: 0.6

sources: ZDI: ZDI-25-928 // CNVD: CNVD-2025-22952

EXTERNAL IDS

db:	NVD	id:	CVE-2025-57704	Trust: 2.3
db:	ZDI_CAN	id:	ZDI-CAN-26824	Trust: 0.7
db:	ZDI	id:	ZDI-25-928	Trust: 0.7
db:	CNVD	id:	CNVD-2025-22952	Trust: 0.6

sources: ZDI: ZDI-25-928 // CNVD: CNVD-2025-22952 // NVD: CVE-2025-57704

REFERENCES

url:	https://filecenter.deltaww.com/news/download/doc/delta-pcsa-2025-00013_eip%20builder%20xml%20external%20entity%20processing%20information%20disclosure%20vulnerability.pdf	Trust: 1.6
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-25-245-01	Trust: 0.7

sources: ZDI: ZDI-25-928 // CNVD: CNVD-2025-22952 // NVD: CVE-2025-57704

CREDITS

kimiya

Trust: 0.7

sources: ZDI: ZDI-25-928

SOURCES

db:	ZDI	id:	ZDI-25-928
db:	CNVD	id:	CNVD-2025-22952
db:	NVD	id:	CVE-2025-57704

LAST UPDATE DATE

2025-10-03T23:18:47.059000+00:00

SOURCES UPDATE DATE

db:	ZDI	id:	ZDI-25-928	date:	2025-10-01T00:00:00
db:	CNVD	id:	CNVD-2025-22952	date:	2025-09-29T00:00:00
db:	NVD	id:	CVE-2025-57704	date:	2025-08-26T13:41:58.950

SOURCES RELEASE DATE

db:	ZDI	id:	ZDI-25-928	date:	2025-10-01T00:00:00
db:	CNVD	id:	CNVD-2025-22952	date:	2025-09-29T00:00:00
db:	NVD	id:	CVE-2025-57704	date:	2025-08-26T07:15:33.787