Lucene search
K

3858 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 11:35 p.m.9 views

CVE-2022-41629

Delta Electronics InfraSuite Device Master versions 00.00.01a and prior allow unauthenticated users to access the aprunning endpoint, which could allow an attacker to retrieve any file from the “RunningConfigs” directory. The attacker could then view and modify configuration files such as...

9.1CVSS6.8AI score0.00589EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:7 p.m.11 views

CVE-2022-1367

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in HandlerTCV.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.20844EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:6 p.m.9 views

CVE-2022-1376

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEprivgrpHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:3 p.m.9 views

CVE-2022-1372

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in dlSlog.aspx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:2 p.m.12 views

CVE-2022-1374

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEunHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:1 p.m.8 views

CVE-2022-1369

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in ReadRegIND. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:0 p.m.13 views

CVE-2022-1378

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEpgHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.19365EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:59 p.m.8 views

CVE-2022-1370

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in ReadREGbyID. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:57 p.m.9 views

CVE-2022-1375

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEslogHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:57 p.m.7 views

CVE-2022-1366

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in HandlerChart.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.19365EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:55 p.m.12 views

CVE-2022-1371

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in ReadRegf. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:51 p.m.12 views

CVE-2022-1377

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAErltHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

10CVSS7.8AI score0.01138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:9 p.m.8 views

CVE-2022-22072

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

7.8CVSS7.1AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:57 p.m.10 views

CVE-2022-22064

Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.8CVSS7.2AI score0.00568EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:49 p.m.10 views

CVE-2022-40202

The database backup function in Delta Electronics InfraSuite Device Master Versions 00.00.01a and prior lacks proper authentication. An attacker could provide malicious serialized objects which, when deserialized, could activate an opcode for a backup scheduling function without authentication...

9.8CVSS7.5AI score0.01242EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:13 p.m.9 views

CVE-2020-11191

Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdrago...

9.4CVSS7AI score0.00944EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 12:56 p.m.9 views

CVE-2024-43699

Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AMRegReport.aspx. An unauthenticated attacker may be able to exploit this issue to obtain records contained in the targeted product...

9.8CVSS7.6AI score0.0052EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:28 a.m.10 views

CVE-2024-34031

Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the script HandlerCFG.ashx. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed...

8.8CVSS7.5AI score0.00499EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:20 a.m.10 views

CVE-2024-34032

Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the GetDIACloudList endpoint. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed...

8.8CVSS7.5AI score0.08742EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:38 a.m.4 views

CVE-2024-12677

Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code...

8.5CVSS7.5AI score0.00333EPSS
Exploits0References1
Rows per page
Query Builder