CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Deltaww: >> Diaenergie >> 1.9.01.001 Security Vulnerabilities

CVE-2022-3214

Delta Industrial Automation's DIAEnergy, an industrial energy management system, is vulnerable to CWE-798, Use of Hard-coded Credentials. Versions prior to 1.9.03.009 have this vulnerability. Executable files could be uploaded to certain directories using hard-coded bearer authorization, allowing remote code execution.

CVSS Score

9.8

EPSS Score

0.029

Published

2022-09-16

Page 3

Vulnerabilities

Vulnerable Software

Deltaww: >> Diaenergie >> 1.9.01.001 Security Vulnerabilities

Products

Pricing

Contact Us