CRITICAL🇵🇱 Wersja polska

CVE-2026-1952

CVSS 9.8v3.1pub. 2026-04-24upd. 2026-05-11

Delta Electronics AS320T has denial of service via the undocumented subfunction vulnerability.

🤖 AI Analysis
How it works

The vulnerability (CWE-912) is related to the presence of hidden, undocumented functionality in the Delta Electronics AS320T device. An attacker can send an appropriately crafted request to this subfunction over the network, without needing to possess any credentials or user interaction. The result is destabilization or complete shutdown of the device.

Impact

An attacker can cause the Delta Electronics AS320T device to become unavailable, which in industrial environments may result in interruption of automation and control processes. The attack does not require authentication or physical access to the device.

Mitigation & patch

Security patches available from the manufacturer should be applied according to the references — security bulletin Delta-PCSA-2026-00006 available at the address indicated in the references section. Until patches are deployed, it is recommended to isolate AS320T devices from untrusted networks and restrict network access exclusively to authorized hosts.

Who is affected

Delta Electronics AS320T — specific firmware/hardware versions are indicated in the manufacturer's references (bulletin Delta-PCSA-2026-00006)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Deltaww As320t

    HW
    Deltaww
    wszystkie wersje
  • Deltaww As320t Firmware

    OS
    Deltaww
    < 1.16
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2026-1949CRITICAL9.8PL ✓ten sam produkt

Delta Electronics AS320T — błędna kalkulacja rozmiaru bufora w handlerze GET/PUT

CVE-2026-1950CRITICAL9.8PL ✓ten sam produkt

Delta Electronics AS320T — przepełnienie bufora stosu przez nazwę pliku

CVE-2026-1951CRITICAL9.8PL ✓ten sam produkt

Delta Electronics AS320T — przepełnienie bufora przez nazwę katalogu (stack-based buffer overflow)

CVE-2026-3630CRITICAL9.8PL ✓ten sam vendor

Stack-based Buffer Overflow w Delta Electronics COMMGR2

CVE-2025-62581CRITICAL9.8PL ✓ten sam vendor

Delta Electronics DIAView — krytyczne podatności (CVE-2025-62581)