CVE-2023-5459

A vulnerability has been found in Delta Electronics DVP32ES2 PLC 1.48 and classified as critical. This vulnerability affects unknown code of the component Password Transmission Handler. The manipulation leads to denial of service. The exploit has been disclosed to the public and may be used. VDB-241582 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
VulDBCNA
6.5 MEDIUM
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
VendorProductVersion
deltawwdvp32es200r_firmware
1.48
deltawwdvp32es200t_firmware
1.48
deltawwdvp32es211t_firmware
1.48
deltawwdvp32es200rc_firmware
1.48
deltawwdvp32es200tc_firmware
1.48
deltawwdvp32es200re_firmware
1.48
deltawwdvp32es200te_firmware
1.48
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://drive.google.com/drive/folders/1mUKkl_NPoUENpPUq-pdQQaEEGvKAaIFB
https://vuldb.com/?ctiid.241582
https://vuldb.com/?id.241582
https://drive.google.com/drive/folders/1mUKkl_NPoUENpPUq-pdQQaEEGvKAaIFB
https://vuldb.com/?ctiid.241582
https://vuldb.com/?id.241582