CVE-2023-0432

Name of the Vulnerable Software and Affected Versions Delta Electronics DX-2100-L1-CN (affected versions not specified)

Description The web configuration service of the affected device contains an authenticated command injection vulnerability. It can be used to execute system commands on the operating system (OS) from the device in the context of the user "root." If the attacker has credentials for the web service, then the device could be fully compromised.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.