What the vulnerability does

01Description

Delta Electronics DIAEnergie Version 1.7.5 and prior may allow an attacker to add a new administrative user without being authenticated or authorized, which may allow the attacker to log in and use the device with administrative privileges.

Key dates

02Disclosure timeline

August 30, 2021 CVE published
August 3, 2024 Record updated