Security Advisory

CVE-2022-41133

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-27 20:15:38

Last updated 2025-04-16 17:44:56

Assigner icscert

State PUBLISHED

Description

The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a SQL injection that exists in GetDIAE_line_message_settingsListParameters. A low-privileged authenticated attacker could exploit this issue to inject arbitrary SQL queries.

← Browse all CVEs View on cve.org ↗