CVE-2026-1952
Delta Electronics · AS320T
A denial of service vulnerability exists in the Delta Electronics AS320T due to an undocumented subfunction that can be triggered to crash the device.
Executive summary
The Delta Electronics AS320T is susceptible to a denial of service attack triggered by an undocumented subfunction, potentially resulting in device instability or total failure.
Vulnerability
The vulnerability stems from an undocumented subfunction in the AS320T device. Invoking this function causes the system to enter a denial of service state, effectively rendering the device unresponsive or shutting down services.
Business impact
The CVSS score of 9.8 reflects the high risk of operational disruption associated with this vulnerability. For industrial or critical systems relying on the AS320T, a successful exploit could force an immediate and unplanned outage, resulting in significant productivity loss and operational downtime.
Remediation
Immediate Action: Update the affected Delta Electronics AS320T hardware to the latest firmware version, which should include the necessary fixes to disable or secure the undocumented subfunction.
Proactive Monitoring: Monitor device stability and performance logs for unexpected reboots, service crashes, or traffic targeting undocumented internal ports/functions.
Compensating Controls: Isolate affected devices from public or untrusted network segments to prevent remote attackers from reaching the vulnerable subfunction.
Exploitation status
Public Exploit Available: Unknown
Analyst recommendation
The risk of unplanned downtime makes this vulnerability a priority for remediation. Administrators should consult the vendor's security advisory to identify the correct firmware update path and schedule maintenance to apply the fix as soon as possible to maintain system reliability.