Unrated severityNVD Advisory· Published May 3, 2024· Updated Aug 12, 2024

SQL Injection in Delta Electronics DIAEnergie

CVE-2024-34032

Description

Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the GetDIACloudList endpoint. An authenticated attacker can exploit this issue to potentially compromise the system on which DIAEnergie is deployed.

Affected products

Diaenerrgie/Diaenergiellm-fuzzy
Delta Electronics/DIAEnergiev5
Range: 1.10.00.005

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisa.gov/news-events/ics-advisories/icsa-24-123-02mitregovernment-resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000