Cleartext Transmission Vulnerability in Delta Electronics DIAEnergie (Version 1.7.5 and prior)

CVE-2022-0988 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Delta Electronics DIAEnergie (Version 1.7.5 and prior) is vulnerable to cleartext transmission as the web application runs by default on HTTP. This could allow an attacker to remotely read transmitted information between the client and product.

Learn more about our Web App Pen Testing.