Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-5459

A vulnerability has been found in Delta Electronics DVP32ES2 PLC 1.48 and classified as critical. This vulnerability affects unknown code of the component Password Transmission Handler. The manipulation leads to denial of service. The exploit has been disclosed to the public and may be used. VDB-241582 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Published

2023-10-09T19:15:10.457

Last Modified

2024-11-21T08:41:48.577

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

  • Access Vector: ADJACENT_NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

6.5

Impact Score

6.9

Weaknesses
  • Type: Secondary
    CWE-404
  • Type: Primary
    CWE-404
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System deltaww dvp32es200r_firmware 1.48 Yes
Hardware deltaww dvp32es200r - No
Operating System deltaww dvp32es200t_firmware 1.48 Yes
Hardware deltaww dvp32es200t - No
Operating System deltaww dvp32es211t_firmware 1.48 Yes
Hardware deltaww dvp32es211t - No
Operating System deltaww dvp32es200rc_firmware 1.48 Yes
Hardware deltaww dvp32es200rc - No
Operating System deltaww dvp32es200tc_firmware 1.48 Yes
Hardware deltaww dvp32es200tc - No
Operating System deltaww dvp32es200re_firmware 1.48 Yes
Hardware deltaww dvp32es200re - No
Operating System deltaww dvp32es200te_firmware 1.48 Yes
Hardware deltaww dvp32es200te - No
References