An SQLi vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior when CEBC.exe processes a 'RecalculateHDMWYC' message, which is split into 4 fields using the '~' character as the separator. An unauthenticated remote attacker can perform SQLi via the fourth field.
The vulnerability occurs in the CEBC.exe process, which handles 'RecalculateHDMWYC' type messages. This message is split into four fields using '~' as a separator. The fourth field is not properly validated, which enables malicious SQL code injection. An attacker can send a specially crafted network message without needing any credentials, thereby triggering unauthorized database operations.
An unauthenticated remote attacker can gain unauthorized access to data stored in the database, modify or delete data, and depending on the environment configuration, potentially take control of the system with database server privileges.
Apply patches available from the manufacturer according to the references. It is also recommended to restrict network access to DIAEnergie systems exclusively to trusted hosts and use a firewall to limit exposure of the CEBC.exe process to unauthorized network traffic.
Delta Electronics DIAEnergie version v1.10.1.8610 and earlier.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDeltaww Diaenergie
APPDeltaww< 1.10.01.004
Related vulnerabilities
SQL Injection w Delta Electronics DIAEnergie — dostęp do danych bez uwierzytelnienia
SQL Injection w Delta Electronics DIAEnergie — nieuwierzytelniony dostęp zdalny
The HICT_Loop class in Delta Electronics DIAEnergy v1.9 contains a SQL Injection flaw that could allow an atta...
The HandlerPageP_KID class in Delta Electronics DIAEnergy v1.9 contains a SQL Injection flaw that could allow ...
Delta Industrial Automation's DIAEnergy, an industrial energy management system, is vulnerable to CWE-798, Use...