CVE-2022-41773
27.10.2022, 21:15
The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a SQL injection that exists in CheckDIACloud. A low-privileged authenticated attacker could exploit this issue to inject arbitrary SQL queries.
| Vendor | Product | Version |
|---|---|---|
| deltaww | diaenergie | 𝑥 < 1.9.01.002 |
𝑥
= Vulnerable software versions