COMMON VULNERABILITIES AND EXPOSURES (CVE) DISCLOSURES

At EnerSys, safeguarding our systems, products, and the data entrusted to us is a core responsibility—one we uphold through a robust, enterprise-wide cybersecurity risk management program. As a global leader in energy systems, we recognise the increasing complexity and importance of digital security across the critical industries we serve.

Transparency and accountability are essential to maintaining trust. As part of this commitment, we publicly disclose known cybersecurity vulnerabilities that may affect our products.

This dedicated CVE Disclosures page informs our customers about identified vulnerabilities and the corresponding mitigation steps. We follow responsible disclosure practices and collaborate with security researchers and third-party experts to ensure vulnerabilities are addressed swiftly and effectively.

Vulnerability Name	Affected Product	CVE#	Posted Date
Web Interface Vulnerability	XM3.1-HP 910-918 XM3.1-HP 903-905 SMG-HP ADOM	CVE-2024-11861	09 May 2025
Single Webpage (Network Diagnostics) RCE Vulnerability	XM3.1-HP 910-918 XM3.1-HP 903-905 SMG-HP ADOM	CVE-2024-12442	09 May 2025

COMMON VULNERABILITIES AND EXPOSURES (CVE) DISCLOSURES

Vulnerability Name

Affected Product

CVE#

Posted Date

BENÖTIGEN SIE HILFE BEI DER SUCHE NACH DER BESTEN LÖSUNG?