Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) is vulnerable to an incorrect default permission in the DIAEnergie application, which may allow an attacker to plant new files (such as DLLs) or replace existing executable files.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-22-081-01 | Mitigation Third Party Advisory US Government Resource |
Configurations
History
04 Apr 2022, 19:29
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-276 | |
CPE | cpe:2.3:a:deltaww:diaenergie:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 7.8 |
First Time |
Deltaww
Deltaww diaenergie |
|
References | (CONFIRM) https://www.cisa.gov/uscert/ics/advisories/icsa-22-081-01 - Mitigation, Third Party Advisory, US Government Resource |
29 Mar 2022, 17:19
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-29 17:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-26839
Mitre link : CVE-2022-26839
CVE.ORG link : CVE-2022-26839
JSON object : View
Products Affected
deltaww
- diaenergie
CWE
CWE-276
Incorrect Default Permissions