GCVE - cpe:2.3:a:n/a:delta_electronics_diaenergie:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:delta_electronics_diaenergie:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Delta Electronics Diaenergie (`9d54255a-6e08-5aa5-b441-891fdfe634d3`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-43775`	vulnerable	2026-06-08 05:49:34.031936	Details available The HICT_Loop class in Delta Electronics DIAEnergy v1.9 contains a SQL Injection flaw that could allow an attacker to gain code execution on a remote system. Published: 2022-10-26T00:00:00.000Z Updated: 2025-05-07T13:34:57.710Z Open on db.gcve.eu Reference links https://www.tenable.com/security/research/tra-2022-33	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-43774`	vulnerable	2026-06-08 05:49:34.030512	Details available The HandlerPageP_KID class in Delta Electronics DIAEnergy v1.9 contains a SQL Injection flaw that could allow an attacker to gain code execution on a remote system. Published: 2022-10-26T00:00:00.000Z Updated: 2025-05-07T13:37:22.851Z Open on db.gcve.eu Reference links https://www.tenable.com/security/research/tra-2022-33	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-38393`	vulnerable	2026-06-08 05:32:56.006936	Details available A Blind SQL injection vulnerability exists in the /DataHandler/HandlerAlarmGroup.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter agid before using it as part of an SQL query. A remote, unauthenticated attacker can exploit this issue to execute arbitrary code in the context of NT SERVICE\MSSQLSERVER. Published: 2021-08-30T17:31:10.000Z Updated: 2024-08-04T01:37:16.590Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-238-03	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-38391`	vulnerable	2026-06-08 05:32:56.003636	Details available A Blind SQL injection vulnerability exists in the /DataHandler/AM/AM_Handler.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter type before using it as part of an SQL query. A remote, unauthenticated attacker can exploit this issue to execute arbitrary code in the context of NT SERVICE\MSSQLSERVER. Published: 2021-08-30T17:30:50.000Z Updated: 2024-08-04T01:37:16.565Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-238-03	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-38390`	vulnerable	2026-06-08 05:32:56.002019	Details available A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query. A remote, unauthenticated attacker can exploit this issue to execute arbitrary code in the context of NT SERVICE\MSSQLSERVER. Published: 2021-08-30T17:33:30.000Z Updated: 2024-08-04T01:37:16.567Z Open on db.gcve.eu Reference links https://us-cert.cisa.gov/ics/advisories/icsa-21-238-03	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-33003`	vulnerable	2026-06-08 05:32:08.452520	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32991`	vulnerable	2026-06-08 05:32:08.366946	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32983`	vulnerable	2026-06-08 05:32:08.340890	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32967`	vulnerable	2026-06-08 05:32:08.277842	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-32955`	vulnerable	2026-06-08 05:32:08.254975	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.