Home / Vulnerability Intelligence / CVE-2026-3630

CVE-2026-3630 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: March 10, 2026

Delta Electronics COMMGR2 - Buffer Overflow

Published: March 9, 2026Updated: March 10, 2026Remote Exploitable

Overview

Delta Electronics COMMGR2 contains a stack-based buffer overflow vulnerability, letting attackers potentially execute arbitrary code, exploit requires no special privileges.

Severity & Score

Severity: Critical

CVSS Score: 9.8

EPSS Score: 4.6%(Probability of exploitation in next 30 days)

Impact

Attackers can execute arbitrary code remotely, potentially leading to full system compromise.

Mitigation

Update to the latest version.

References

https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2026-00005_COMMGR%202%20Multiple%20Vulnerabilities%20(CVE-2026-3630,%20CVE-2026-3631).pdf

Social Media Activity(1 post)

Offensive Sequence

@offseq

Mar 9, 2026

🔔 CVE-2026-3630: CRITICAL stack-based buffer overflow in DeltaWW COMMGR2 (CVSS 9.8). Remote, unauthenticated RCE risk — no patch yet. Segment & restrict network access, monitor for exploits. More: https://radar.offseq.com/threat/cve-2026-3630-cwe-121-stack-based-buffer-overflow--c00e7f15 #OffSeq #ICS #Vulnerability #OTsecurity

View original post

Related Resources

Details

CVE ID: CVE-2026-3630
Severity: Critical
CVSS Score: 9.8
Type: buffer_overflow
Status: confirmed
EPSS: 4.6%
Social Posts: 1

CWE

CWE-787

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

4.6%Probability of exploitation in the next 30 days