2 matches found
CVE-2022-26349
Delta Electronics DIAEnergie is affected by CVE-2022-26349 due to a blind SQL injection vulnerability in the DIAE_eccoefficientHandler.ashx. All versions prior to 1.8.02.004 are impacted, allowing an attacker to inject arbitrary SQL queries, potentially retrieve/modify database contents and execu...
Delta Electronics DIAEnergie (Update C)
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: DIAEnergie Vulnerabilities: Path Traversal, Incorrect Default Permissions, SQL Injection, Uncontrolled Search Path Element 2. UPDATE INFORMATION This updated advisory is a...