CVE-2024-12677 Delta Electronics CVE debrief

Who should care

Organizations operating Delta Electronics DTM Soft in industrial automation environments, particularly those in manufacturing, process control, and building automation sectors. Security teams responsible for OT/ICS asset management and patch deployment should prioritize this update given the high severity and potential for complete system compromise.

Technical summary

The vulnerability exists due to insecure object deserialization within DTM Soft. When processing untrusted data, the application deserializes objects without proper validation, enabling an attacker to craft malicious serialized objects that execute arbitrary code upon deserialization. The attack vector is local (AV:L) with low attack complexity (AC:L), requiring no privileges (PR:N) but user interaction (UI:R). Successful exploitation yields high impact across confidentiality, integrity, and availability (C:H/I:H/A:H). The vulnerability is classified as CWE-502 (Deserialization of Untrusted Data). Remediation is available through vendor update to version 1.60.

Defensive priority

HIGH

Recommended defensive actions

• Update Delta Electronics DTM Soft to version 1.60 or later to remediate the insecure deserialization vulnerability
• Verify current DTM Soft version and confirm upgrade completion through the Delta Download Center
• Apply defense-in-depth controls for industrial control systems per CISA guidance, including network segmentation and restricted physical access
• Monitor for anomalous process execution or unexpected object deserialization events in DTM Soft environments
• Review and implement CISA ICS recommended practices for securing operational technology environments

Evidence notes

Vulnerability disclosed via CISA CSAF advisory ICSA-24-354-03. CVSS 3.1 vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. Affected product confirmed as Delta Electronics DTM Soft <=1.30. Vendor fix available in version 1.60.

Official resources