Delta Electronics DIAEnergie 1.10.00.005
Approved changes feed: RSS · Atom
cpe:2.3:a:deltaww:diaenergie:1.10.00.005:*:*:*:*:*:*:*
part: a version: 1.10.00.005 update: *
| Vendor | Deltaww (ad3e3879-744a-547a-8a68-13ba5faaf0a4) |
|---|---|
| Product | Diaenergie (c1325749-349e-5697-8e11-7db911aa72c6) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-34033 |
vulnerable | 2026-06-03 14:55:53.388614 |
Path Traversal vulnerability in Delta Electronics DIAEnergie
HIGH (8.8)
Delta Electronics DIAEnergie has insufficient input validation which makes it possible to perform a path traversal attack and write outside of the intended directory. If a file name is specified that already exists on the file system, then the original file will be overwritten.
Published: 2024-05-03T00:20:03.319Z
Updated: 2024-08-12T20:08:16.443Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-34032 |
vulnerable | 2026-06-03 14:55:53.388142 |
SQL Injection in Delta Electronics DIAEnergie
HIGH (8.8)
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the GetDIACloudList endpoint. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed.
Published: 2024-05-03T00:16:40.017Z
Updated: 2024-08-12T20:08:42.943Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-34031 |
vulnerable | 2026-06-03 14:55:53.386132 |
SQL Injection vulnerability in Delta Electronics DIAEnergie
HIGH (8.8)
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the script Handler_CFG.ashx. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed.
Published: 2024-05-03T00:18:13.497Z
Updated: 2024-08-12T20:09:18.872Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.