PT-2022-17228 · Delta Electronics · Diaenergie

Published

2022-03-29

Updated

2022-04-04

CVE-2022-25347

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Delta Electronics DIAEnergie versions prior to 1.8.02.004

Description The issue allows an attacker to perform path traversal attacks, potentially enabling them to write arbitrary files to various locations on the file system.

Recommendations For versions prior to 1.8.02.004, update to version 1.8.02.004 or later to resolve the issue.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-37CWE-22

Related Identifiers

CVE-2022-25347

Affected Products

Diaenergie

PT-2022-17228 · Delta Electronics · Diaenergie

CVE-2022-25347

Weakness Enumeration

Related Identifiers

Affected Products

References · 4