Security Advisory

CVE-2022-26836

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-29 16:37:09

Last updated 2025-04-16 16:36:05

Assigner icscert

State PUBLISHED

Description

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability that exists in HandlerExport.ashx/Calendar. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands.

← Browse all CVEs View on cve.org ↗