Vulnerabilities > Deltaww

DATE CVE VULNERABILITY TITLE RISK
2023-02-03 CVE-2023-0123 Out-of-bounds Write vulnerability in Deltaww Dopsoft
Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software.
local
low complexity
deltaww CWE-787
7.8
2023-02-03 CVE-2023-0124 Out-of-bounds Write vulnerability in Deltaww Dopsoft
Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to an out-of-bounds write, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software.
local
low complexity
deltaww CWE-787
7.8
2023-01-26 CVE-2023-0444 Unspecified vulnerability in Deltaww Infrasuite Device Master 00.00.02A
A privilege escalation vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.02a.
network
low complexity
deltaww
8.8
2023-01-13 CVE-2022-41778 Unspecified vulnerability in Deltaww Infrasuite Device Master 00.00.01A
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied data provided through the Device-DataCollect service port without proper verification.
network
low complexity
deltaww
8.8
2023-01-13 CVE-2022-4616 Unspecified vulnerability in Deltaww Dx-3021L9 Firmware
The webserver in Delta DX-3021 versions prior to 1.24 is vulnerable to command injection through the network diagnosis page.
network
low complexity
deltaww
critical
9.1
2022-12-16 CVE-2022-2966 Unspecified vulnerability in Deltaww Dopsoft
Out-of-bounds Read vulnerability in Delta Electronics DOPSoft.This issue affects DOPSoft: All Versions.
network
low complexity
deltaww
7.5
2022-12-14 CVE-2022-42139 OS Command Injection vulnerability in Deltaww Dvw-W02W2-E2 Firmware 2.42
Delta Electronics DVW-W02W2-E2 1.5.0.10 is vulnerable to Command Injection via Crafted URL.
network
low complexity
deltaww CWE-78
8.8
2022-12-14 CVE-2022-42140 OS Command Injection vulnerability in Deltaww Dx-2100-L1-Cn Firmware 1.5.0.10
Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Command Injection via lform/net_diagnose.
network
low complexity
deltaww CWE-78
7.2
2022-12-14 CVE-2022-42141 Cross-site Scripting vulnerability in Deltaww Dx-2100-L1-Cn Firmware 1.5.0.10
Delta Electronics DX-2100-L1-CN 2.42 is vulnerable to Cross Site Scripting (XSS) via lform/urlfilter.
network
low complexity
deltaww CWE-79
5.4
2022-12-13 CVE-2022-2660 Use of Hard-coded Credentials vulnerability in Deltaww Dialink 1.2.4.0
Delta Industrial Automation DIALink versions 1.4.0.0 and prior are vulnerable to the use of a hard-coded cryptographic key which could allow an attacker to decrypt sensitive data and compromise the machine.
network
low complexity
deltaww CWE-798
7.5