4 matches found
CVE-2021-32967
creationtimestamp| type| source ---|---|--- 2021-08-30 22:32:52+00:00| seen| https://t.me/cibsecurity/28034...
CVE-2021-32967
Delta Electronics DIAEnergie Version 1.7.5 and prior may allow an attacker to add a new administrative user without being authenticated or authorized, which may allow the attacker to log in and use the device with administrative privileges...
CVE-2021-32967
CVE-2021-32967 concerns Delta Electronics DIAEnergie before v1.9. The issue enables an attacker to add a new administrative user without authentication or authorization, potentially allowing remote login with administrative privileges. Public sources in the provided documents confirm a high-impac...
Delta Electronics DIAEnergie (Update C)
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: DIAEnergie Vulnerabilities: Use of Password Hash with Insufficient Computational Effort, Authentication Bypass Using an Alternate Path or Channel, Unrestricted Upload of Fil...