Details of VAR-202601-2403

ID

VAR-202601-2403

CVE

CVE-2025-62582

TITLE

Delta Electronics, INC. of DIAView Vulnerability regarding lack of authentication for critical features in

Trust: 0.8

sources: JVNDB: JVNDB-2026-001616

DESCRIPTION

Delta Electronics DIAView has multiple vulnerabilities. All information handled by the software may be rewritten. Furthermore, the software may stop working completely. Furthermore, attacks that exploit this vulnerability will not affect other software

Trust: 1.62

sources: NVD: CVE-2025-62582 // JVNDB: JVNDB-2026-001616

AFFECTED PRODUCTS

vendor:	deltaww	model:	diaview	scope:	lt	version:	4.4.0	Trust: 1.0
vendor:	delta	model:	diaview	scope:	eq	version:	-	Trust: 0.8
vendor:	delta	model:	diaview	scope:	-	version:	-	Trust: 0.8
vendor:	delta	model:	diaview	scope:	eq	version:	4.4.0	Trust: 0.8

sources: JVNDB: JVNDB-2026-001616 // NVD: CVE-2025-62582

CVSS

SEVERITY

CVSSV2

CVSSV3

759f5e80-c8e1-4224-bead-956d7b33c98b:	CVE-2025-62582
value:	CRITICAL
Trust: 1.0
OTHER:	JVNDB-2026-001616
value:	CRITICAL
Trust: 0.8

759f5e80-c8e1-4224-bead-956d7b33c98b:	CVE-2025-62582
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 1.0
OTHER:	JVNDB-2026-001616
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2026-001616 // NVD: CVE-2025-62582

PROBLEMTYPE DATA

problemtype:	CWE-306	Trust: 1.0
problemtype:	Lack of authentication for critical features (CWE-306) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2026-001616 // NVD: CVE-2025-62582

PATCH

title:

HPESBNW04992 rev.1 - Multiple Vulnerabilities HPE Aruba Networking EdgeConnect SD-WAN Orchestrator.

url:

https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00001_DIAView%20Multiple%20Vulnerabilities%20(CVE-2025-62581,%20CVE-2025-62582).pdf

Trust: 0.8

sources: JVNDB: JVNDB-2026-001616

EXTERNAL IDS

db:	NVD	id:	CVE-2025-62582	Trust: 2.6
db:	JVNDB	id:	JVNDB-2026-001616	Trust: 0.8

sources: JVNDB: JVNDB-2026-001616 // NVD: CVE-2025-62582

REFERENCES

url:	https://filecenter.deltaww.com/news/download/doc/delta-pcsa-2026-00001_diaview%20multiple%20vulnerabilities%20(cve-2025-62581,%20cve-2025-62582).pdf	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2025-62582	Trust: 0.8

sources: JVNDB: JVNDB-2026-001616 // NVD: CVE-2025-62582

SOURCES

db:	JVNDB	id:	JVNDB-2026-001616
db:	NVD	id:	CVE-2025-62582

LAST UPDATE DATE

2026-01-23T23:14:07.962000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2026-001616	date:	2026-01-22T02:29:00
db:	NVD	id:	CVE-2025-62582	date:	2026-01-20T16:58:23.900

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2026-001616	date:	2026-01-22T00:00:00
db:	NVD	id:	CVE-2025-62582	date:	2026-01-16T03:15:59.830