Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in DIAE_unHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2022-05-02T18:08:51

Updated: 2024-08-03T00:03:06.045Z

Reserved: 2022-04-14T00:00:00

Link: CVE-2022-1374

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2022-05-02T19:15:08.680

Modified: 2022-05-10T20:02:41.377

Link: CVE-2022-1374

cve-icon Redhat

No data.