2 matches found
CVE-2022-1098
Delta Electronics DIAEnergie (all versions prior to 1.9) is affected by CVE-2022-1098 through Uncontrolled Search Path Element (DLL hijacking). The root cause is DLL loading order/search path allowing privilege escalation when paired with the Incorrect Default Permissions issue; CVSSv3 base score...
Delta Electronics DIAEnergie (Update C)
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: DIAEnergie Vulnerabilities: Path Traversal, Incorrect Default Permissions, SQL Injection, Uncontrolled Search Path Element 2. UPDATE INFORMATION This updated advisory is a...