Security Advisory

CVE-2022-1376

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-02 18:10:38

Last updated 2025-04-16 16:26:16

Assigner icscert

State PUBLISHED

Description

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in DIAE_privgrpHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands.

← Browse all CVEs View on cve.org ↗