Vulnerabilities > Deltaww
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-03 | CVE-2023-0123 | Out-of-bounds Write vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software. | 7.8 |
| 2023-02-03 | CVE-2023-0124 | Out-of-bounds Write vulnerability in Deltaww Dopsoft Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to an out-of-bounds write, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software. | 7.8 |
| 2023-01-26 | CVE-2023-0444 | Unspecified vulnerability in Deltaww Infrasuite Device Master 00.00.02A A privilege escalation vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.02a. | 8.8 |
| 2023-01-13 | CVE-2022-41778 | Deserialization of Untrusted Data vulnerability in Deltaww Infrasuite Device Master 00.00.01A Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-DataCollect service port without proper verification. | 8.8 |
| 2023-01-13 | CVE-2022-4616 | Command Injection vulnerability in Deltaww Dx-3021L9 Firmware The webserver in Delta DX-3021 versions prior to 1.24 is vulnerable to command injection through the network diagnosis page. | 9.1 |
| 2022-12-16 | CVE-2022-2966 | Out-of-bounds Read vulnerability in Deltaww Dopsoft Out-of-bounds Read vulnerability in Delta Electronics DOPSoft.This issue affects DOPSoft: All Versions. | 7.5 |
| 2022-12-14 | CVE-2022-42139 | OS Command Injection vulnerability in Deltaww Dvw-W02W2-E2 Firmware 2.42 Delta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL. | 8.8 |
| 2022-12-14 | CVE-2022-42140 | OS Command Injection vulnerability in Deltaww Dx-2100-L1-Cn Firmware 1.5.0.10 Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Command Injection via lform/net_diagnose. | 7.2 |
| 2022-12-14 | CVE-2022-42141 | Cross-site Scripting vulnerability in Deltaww Dx-2100-L1-Cn Firmware 1.5.0.10 Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Cross Site Scripting (XSS) via lform/urlfilter. | 5.4 |
| 2022-12-13 | CVE-2022-2660 | Use of Hard-coded Credentials vulnerability in Deltaww Dialink 1.2.4.0 Delta Industrial Automation DIALink versions 1.4.0.0 and prior are vulnerable to the use of a hard-coded cryptographic key which could allow an attacker to decrypt sensitive data and compromise the machine. | 7.5 |