ICS Delta Electronics DIAEnergie RecalculateHDMWYC Unauthenticated SQL Injection (CVE-2024-4548)

Rule ID

1234967

Severity

Critical

Description

An SQLi vulnerability exists when CEBC.exe processes a 'RecalculateHDMWYC' message, an unauthenticated remote attacker can perform SQL injection via the specific field.

Impact

SQL injection

Recommendation

Update vendor's patch.

IPS Category

ICS threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

Keywords

N/A

Date Created

2024/05/20

Last Updated

2024/08/30

This website uses cookies to ensure you get the best experience on our website.

Learn more