COMMON VULNERABILITIES AND EXPOSURES (CVE) DISCLOSURES
At EnerSys, safeguarding our systems, products, and the data entrusted to us is a core responsibility—one we uphold through a robust, enterprise-wide cybersecurity risk management program. As a global leader in energy systems, we recognize the increasing complexity and importance of digital security across the critical industries we serve.
Transparency and accountability are essential to maintaining trust. As part of this commitment, we publicly disclose known cybersecurity vulnerabilities that may affect our products.
This dedicated CVE Disclosures page informs our customers about identified vulnerabilities and the corresponding mitigation steps. We follow responsible disclosure practices and collaborate with security researchers and third-party experts to ensure vulnerabilities are addressed swiftly and effectively.
Vulnerability Name |
Affected Product |
CVE# |
Posted Date |
---|---|---|---|
Web Interface Vulnerability | XM3.1-HP 910-918 XM3.1-HP 903-905 SMG-HP ADOM |
CVE-2024-11861 | 09 May 2025 |
Single Webpage (Network Diagnostics) RCE Vulnerability | XM3.1-HP 910-918 XM3.1-HP 903-905 SMG-HP ADOM |
CVE-2024-12442 | 09 May 2025 |