CVE-2024-4547

CVSS V2 None CVSS V3 None
Description
A SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateScript' message, which is splitted into 4 fields using the '~' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth field
Overview
  • CVE ID
  • CVE-2024-4547
  • Assigner
  • tenable
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-05-06T13:48:08.737Z
  • Last Modified Date
  • 2024-06-20T20:08:45.951Z
References
History
Created Old Value New Value Data Type Notes
2024-06-23 22:24:03 Added to TrackCVE