Lucene search
HistoryMar 21, 2024 - 11:15 p.m.
CVE-2024-28045
cve-2024-28045
nvd
cross-site scripting
information security
input neutralization
4.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Improper neutralization of input within the affected product could lead to cross-site scripting.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "DIAEnergie",
"vendor": "Delta Electronics",
"versions": [
{
"lessThan": "v1.10.00.005",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2024-28045 Delta Electronics DIAEnergie Cross-site scripting
2024-03-21 22:24:12
nvd
nvd
CVE-2024-28045
2024-03-21 23:15:10
ics
ics
Delta Electronics DIAEnergie
2024-03-14 12:00:00
4.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-28045