Описание
Delta Electronics DIAEnergie (Version 1.7.5 and prior) is vulnerable to cleartext transmission as the web application runs by default on HTTP. This could allow an attacker to remotely read transmitted information between the client and product.
Ссылки
- MitigationPatchThird Party AdvisoryUS Government Resource
- MitigationPatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.5 (включая)
cpe:2.3:a:deltaww:diaenergie:*:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00135
Низкий
7.1 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-319
CWE-319
Связанные уязвимости
CVSS3: 7.5
github
почти 4 года назад
Delta Electronics DIAEnergie (Version 1.7.5 and prior) is vulnerable to cleartext transmission as the web application runs by default on HTTP. This could allow an attacker to remotely read transmitted information between the client and product.
EPSS
Процентиль: 34%
0.00135
Низкий
7.1 High
CVSS3
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-319
CWE-319