Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Delta Electronics DIAEnergie Path traversal
Vulnerability Description
It is possible to perform a path traversal attack and write outside of the intended directory. If a file name is specified that already exists on the file system, then the original file will be overwritten.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Delta Electronics DIAEnergie 路径遍历漏洞
Vulnerability Description
Delta Electronics DIAEnergie是中国台湾台达电子(Delta Electronics)公司的一个工业能源管理系统,用于实时监控和分析能源消耗、计算能源消耗和负载特性、优化设备性能、改进生产流程并最大限度地提高能源效率。 Delta Electronics DIAEnergie v1.10.00.005 之前版本存在路径遍历漏洞,该漏洞源于允许攻击者执行路径遍历攻击并在预期目录之外进行写入,如果指定的文件名已存在于文件系统中,则原始文件将被覆盖。
CVSS Information
N/A
Vulnerability Type
N/A