OTPulse
FeedAboutContact

Delta Electronics DTN Soft

Plan Patch7.8ICS-CERT ICSA-25-210-03Jul 29, 2025
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary

This is a deserialization vulnerability (CWE-502) in Delta Electronics DTN Soft version 2.1.0 and earlier. When a user opens a specially crafted project file in the application, untrusted data is deserialized, allowing arbitrary code execution. The vulnerability affects engineering workstations and requires local access or delivery of a malicious project file to trigger. DTN Soft is widely used for configuring Delta power system and industrial automation devices.

What this means
What could happen
An attacker with local access to a computer running DTN Soft could use a specially crafted project file to execute arbitrary code on that workstation, potentially compromising engineering functions and plant configuration data.
Who's at risk
Engineering and operations staff using Delta Electronics DTN Soft on workstations for power system and industrial automation design and configuration. This affects anyone managing Delta equipment configuration through DTN Soft.
How it could be exploited
An attacker creates a malicious DTN Soft project file and tricks a user into opening it on a workstation running DTN Soft version 2.1.0 or earlier. When the file is opened, the application deserializes untrusted data, allowing the attacker to execute arbitrary code on that computer.
Prerequisites
  • Local file access or ability to deliver a malicious project file to a user
  • User must open the specially crafted project file in DTN Soft version 2.1.0 or earlier
  • DTN Soft must be installed on the targeted workstation
Requires user interaction to exploitLocal exploitation only (not remotely exploitable)Allows code execution on engineering workstationAffects configuration management tools
Exploitability
Moderate exploit probability (EPSS 1.1%)
Affected products (1)
ProductAffected VersionsFix Status
DTN Soft: <=2.1.0≤ 2.1.02.1.0 or later
Remediation & Mitigation
0/5
Do now
0/2
HARDENINGRestrict file sharing permissions on engineering workstations to limit who can place files in project directories
WORKAROUNDTrain engineering staff not to open project files from untrusted or unexpected sources
Schedule — requires maintenance window
0/2

Patching may require device reboot — plan for process interruption

HOTFIXUpdate DTN Soft to version 2.1.0 or later
HOTFIXUpdate DTM Soft (if installed) to version 1.6.0.0 (released March 25, 2025) or later
Long-term hardening
0/1
HARDENINGImplement network segmentation to isolate engineering workstations from business networks and internet access
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/66b0e66e-e210-45f7-80ae-6d5b81c6d385
Delta Electronics DTN Soft | CVSS 7.8 - OTPulse