CVE-2022-3214 – Delta Industrial Automation’s DIAEnergy, an industrial energy management system, is vulner …

Vuln ID: CVE-2022-3214

Published:  2022-09-16  19:15:10Z

Description: Delta Industrial Automation’s DIAEnergy, an industrial energy management system, is vulnerable to CWE-798, Use of Hard-coded Credentials. Version 1.8.0 and prior have this vulnerability. Executable files could be uploaded to certain directories using hard-coded bearer authorization, allowing remote code execution.

Source: NVD.NIST.GOV