ICS Delta Industrial Automation DIAEnergie DIAE_loopmapHandler.ashx SQL Injection (CVE-2022-26887)

Rule ID

1231355

Severity

Critical

Description

An SQL injection has been reported in Delta Industrial Automation DIAEnergie. The vulnerability is due to insufficient input validation when processing requests to the DIAE_loopmapHandler.ashx endpoint.

Impact

SQL injection

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2022-26887

CWE-89

ICSA-22-081-01

T1190

T0819

T1059

Keywords

N/A

Date Created

2022/06/28

Last Updated

2026/02/03

This website uses cookies to ensure you get the best experience on our website.

Learn more