CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3858 matches found

CNNVD•added 2024/03/21 12:0 a.m.•3 views

Delta Electronics DIAEnergie 跨站脚本漏洞

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics, Taiwan, China. Delta Electronics DIAEnergie suffers from a cross-site scripting vulnerability that can be exploited by an attacker to steal a victim's cookie-based authentication credentials...

5.4CVSS6.4AI score0.00293EPSS

Exploits0References2

CNNVD•added 2024/03/21 12:0 a.m.•3 views

Delta Electronics DIAEnergie SQL注入漏洞

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics, Taiwan, China, for monitoring and analyzing energy consumption in real time, calculating energy consumption and load characteristics, optimizing equipment performance, improving production processes and...

8.8CVSS7.6AI score0.08484EPSS

Exploits0References2

CNNVD•added 2024/03/21 12:0 a.m.•3 views

Delta Electronics DIAEnergie SQL注入漏洞

8.8CVSS7.6AI score0.08484EPSS

Exploits0References2

CNNVD•added 2024/03/21 12:0 a.m.•3 views

Delta Electronics DIAEnergie SQL注入漏洞

8.8CVSS7.6AI score0.08484EPSS

Exploits0References2

CNVD•added 2024/03/19 12:0 a.m.•3 views

TOTOLINK X2000R VPN Page Page Cross-Site Scripting Vulnerability

TOTOLINK X2000R is a WiFi 6 router from China's Gion Electronics that supports Gigabit network and Easy Mesh features with multi-device connectivity and wireless expansion capabilities. The TOTOLINK X2000R suffers from a cross-site scripting vulnerability that stems from the lack of effective...

5.4CVSS6.6AI score0.00389EPSS

Exploits1References1

CNVD•added 2024/03/19 12:0 a.m.•2 views

TOTOLINK X2000R Cross-Site Scripting Vulnerability (CNVD-2025-15317)

8CVSS6.6AI score0.0048EPSS

Exploits1References1

Positive Technologies•added 2024/03/16 12:0 a.m.•4 views

PT-2024-22234 · Delta Electronics · Delta Electronics Diaenergie

Name of the Vulnerable Software and Affected Versions: Delta Electronics DIAEnergie affected versions not specified Description: The issue is related to improper neutralization of input within the affected product, which could lead to cross-site scripting. Recommendations: At the moment, there is...

4.6CVSS6.5AI score0.00293EPSS

Exploits0References6

CISA•added 2024/03/14 12:0 p.m.•4 views

CISA Releases Fifteen Industrial Control Systems Advisories

CISA released fifteen Industrial Control Systems ICS advisories on March 14, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-074-01 Siemens SENTRON 7KM PAC3x20 ICSA-24-074-02 Siemens Solid Edge ICSA-24-074-03...

7AI score

Exploits0References15

ICS•added 2024/03/14 6:0 a.m.•87 views

Delta Electronics DIAEnergie

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION : Exploitable remotely Vendor : Delta Electronics Equipment : DIAEnergie Vulnerabilities : Improper Authorization, SQL Injection, Path Traversal, Cross-site Scripting 2. RISK EVALUATION Successful exploitation of these vulnerabilities could...

9.8CVSS7.9AI score0.0879EPSS

Exploits0References10

CNVD•added 2024/03/12 12:0 a.m.•5 views

TOTOLINK X6000R Operating System Command Injection Vulnerability

TOTOLINK X6000R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK X6000R version 9.4.0cu.85220230719 suffers from an operating system command injection vulnerability that originates from a security issue in the setDiagnosisCfg function in /cgi-bin/cstecgi.cgi in the...

9CVSS7.3AI score0.03952EPSS

Exploits2References1

CNVD•added 2024/03/06 12:0 a.m.•7 views

Delta Electronics CNCSoft-B Stack Buffer Overflow Vulnerability

Delta Electronics CNCSoft-B is a CNC machine simulation system software from Delta Electronics Taiwan, China. A stack buffer overflow vulnerability exists in Delta Electronics CNCSoft-B, which can be exploited by an attacker to execute arbitrary code because the program fails to properly validate...

7.8CVSS7.9AI score0.00739EPSS

Exploits0References1

BDU FSTEC•added 2024/03/05 12:0 a.m.•4 views

The vulnerability of the Delta Electronics InfraSuite Device Master software in monitoring devices in real time, due to deficiencies in the deserialization mechanism, allows a perpetrator to execute arbitrary code.

The vulnerability of the Delta Electronics InfraSuite Device Master software for real-time device monitoring is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.2AI score0.00834EPSS

Exploits0References3Affected Software1

Zero Day Initiative•added 2024/03/04 12:0 a.m.•18 views

Delta Electronics CNCSoft-B DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-B. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.9AI score0.00739EPSS

Exploits0References1