Details of VAR-202405-0029

ID

VAR-202405-0029

CVE

CVE-2024-4549

TITLE

Delta Electronics DIAEnergie Denial of Service Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-01803

DESCRIPTION

A denial of service vulnerability exists in Delta Electronics DIAEnergie v1.10.1.8610 and prior. When processing an 'ICS Restart!' message, CEBC.exe restarts the system. Delta Electronics DIAEnergie is an industrial energy management system launched by Delta Electronics, a Taiwan-based company

Trust: 1.44

sources: NVD: CVE-2024-4549 // CNVD: CNVD-2025-01803

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-01803

AFFECTED PRODUCTS

vendor:

delta

model:

electronics diaenergie

scope:

lte

version:

<=1.10.1.8610

Trust: 0.6

sources: CNVD: CNVD-2025-01803

CVSS

SEVERITY

CVSSV2

CVSSV3

vulnreport@tenable.com:	CVE-2024-4549
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2025-01803
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-01803
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

vulnreport@tenable.com:	CVE-2024-4549
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-01803 // NVD: CVE-2024-4549

PROBLEMTYPE DATA

problemtype:

CWE-400

Trust: 1.0

sources: NVD: CVE-2024-4549

PATCH

title:

Patch for Delta Electronics DIAEnergie Denial of Service Vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/652056

Trust: 0.6

sources: CNVD: CNVD-2025-01803

EXTERNAL IDS

db:	TENABLE	id:	TRA-2024-13	Trust: 1.6
db:	NVD	id:	CVE-2024-4549	Trust: 1.6
db:	CNVD	id:	CNVD-2025-01803	Trust: 0.6

sources: CNVD: CNVD-2025-01803 // NVD: CVE-2024-4549

REFERENCES

url:

https://www.tenable.com/security/research/tra-2024-13

Trust: 1.6

sources: CNVD: CNVD-2025-01803 // NVD: CVE-2024-4549

SOURCES

db:	CNVD	id:	CNVD-2025-01803
db:	NVD	id:	CVE-2024-4549

LAST UPDATE DATE

2025-01-24T22:58:15.337000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-01803	date:	2025-01-20T00:00:00
db:	NVD	id:	CVE-2024-4549	date:	2024-07-03T02:07:44.057

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-01803	date:	2025-01-21T00:00:00
db:	NVD	id:	CVE-2024-4549	date:	2024-05-06T14:15:08.717