4 matches found
CVE-2024-34032
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the GetDIACloudList endpoint. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed...
CVE-2024-34032 SQL Injection in Delta Electronics DIAEnergie
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the GetDIACloudList endpoint. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed...
CVE-2024-34032
Delta Electronics DIAEnergie is vulnerable to an SQL injection in the GetDIACloudList endpoint (CVE-2024-34032). The issue allows an authenticated attacker with low privileges to potentially compromise the system; CVSS v3.1 base score 8.8 (HIGH). The ICS/CISA alert also notes an additional SQL in...
Delta Electronics DIAEnergie
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : Delta Electronics Equipment : DIAEnergie Vulnerabilities : SQL Injection, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an authenticated...