Lucene search
IcscertCVE-2024-28045HistoryMar 21, 2024 - 11:15 p.m.
CVE-2024-28045
2024-03-2123:15:10
CWE-79
icscert
web.nvd.nist.gov
33
cve-2024-28045
nvd
cross-site scripting
information security
input neutralization
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
9.0%
Improper neutralization of input within the affected product could lead to cross-site scripting.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "DIAEnergie",
"vendor": "Delta Electronics",
"versions": [
{
"lessThan": "v1.10.00.005",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-28045 Delta Electronics DIAEnergie Cross-site scripting
2024-03-21 22:24:12
nvd
nvd
CVE-2024-28045
2024-03-21 23:15:10
cvelist
cvelist
CVE-2024-28045 Delta Electronics DIAEnergie Cross-site scripting
2024-03-21 22:24:12
ics
ics
Delta Electronics DIAEnergie
2024-03-14 12:00:00
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-28045