Reflected Cross-Site Scripting Vulnerability in DIAEnergie by Delta Electronics
CVE-2025-57701

5.9MEDIUM

Key Information:

Vendor: Delta Electronics
Status: Diaenergie
Vendor: CVE Published:; 18 August 2025

🔔 Create Delta Electronics Vulnerability Alert

What is CVE-2025-57701?

The reflected cross-site scripting vulnerability in DIAEnergie allows malicious users to inject arbitrary scripts into web pages. This can lead to the execution of harmful scripts in users' browsers, posing significant risks to sensitive data and user interactions. Implement proper input validation and encode outputs to mitigate this issue.

Affected Version(s)

DIAEnergie Windows 0 <= 1.11.00.002

References

https://filecenter.deltaww.com/news/download/doc/Delta-PC...

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2025
Vulnerability Reserved
Aug 18, 2025