Home / Vulnerability Intelligence / CVE-2026-1949

CVE-2026-1949 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: April 24, 2026

Delta Electronics AS320T - Buffer Overflow

Published: April 24, 2026Updated: April 24, 2026Remote Exploitable

Overview

Delta Electronics AS320T contains a buffer overflow caused by incorrect calculation of buffer size on the stack in the GET/PUT request handler of the web service, letting attackers potentially cause memory corruption or code execution, exploit requires crafted request.

Severity & Score

Severity: Critical

CVSS Score: 9.8

Impact

Attackers can cause memory corruption or execute arbitrary code, potentially leading to full system compromise.

Mitigation

Update to the latest version or apply vendor patches addressing buffer size calculation.

References

https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00006_AS320T%20Multiple%20vulnerabilities%20(CVE-2026-1949,%201950,%201951,%201952).pdf

Related Resources

Details

CVE ID: CVE-2026-1949
Severity: Critical
CVSS Score: 9.8
Type: buffer_overflow
Status: new

CWE

CWE-131

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H