Reflected Cross-Site Scripting Vulnerability in DIAEnergie by Delta Electronics
CVE-2025-57702

5.9MEDIUM

Key Information:

Vendor: Delta Electronics
Status: Diaenergie
Vendor: CVE Published:; 18 August 2025

🔔 Create Delta Electronics Vulnerability Alert

What is CVE-2025-57702?

The reflected cross-site scripting vulnerability in DIAEnergie, a product by Delta Electronics, allows attackers to inject malicious scripts into web pages. This can facilitate attacks on user sessions, impact personal data safety, and potentially lead to unauthorized actions performed on behalf of users. The exploit targets the way input is processed by the application, exposing users to risks if they interact with compromised content.

Affected Version(s)

DIAEnergie Windows 0 <= 1.11.00.002

References

https://filecenter.deltaww.com/news/download/doc/Delta-PC...

CVSS V4

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 18, 2025
Vulnerability Reserved
Aug 18, 2025