Buffer Overflow Vulnerability in Delta Electronics AS320T Web Service
CVE-2026-1949

9.8CRITICAL

Key Information:

Vendor: Deltaww
Status: As320t
Vendor: CVE Published:; 24 April 2026

What is CVE-2026-1949?

The Delta Electronics AS320T is affected by a vulnerability that results from an incorrect calculation of buffer size on the stack within the GET/PUT request handler of its web service. This flaw may allow an attacker to exploit the vulnerability to execute arbitrary code or cause a denial of service due to improper handling of input data. Organizations using the AS320T should assess their security posture and implement necessary updates to mitigate any potential risks associated with this vulnerability.

Affected Version(s)

AS320T 0 <= 1.14

References

https://filecenter.deltaww.com/news/download/doc/Delta-PC...

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2026
Vulnerability Reserved
Feb 5, 2026

Credit

Sergey Fedonin and Ivan Kurnakov (Positive Technologies)

CVE-2026-1949 Data

JSON

Deltaww

What is CVE-2026-1949?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit