Delta Electronics DVP-12SE11T Out-of-Bounds Write Vulnerability

An out-of-bounds memory write vulnerability has been identified in the Delta Electronics DVP-12SE11T product, specifically in firmware versions prior to v2.16. This vulnerability allows for memory corruption, which could potentially be exploited to execute arbitrary code or cause a denial-of-service condition.

Impact

Exploitation of this vulnerability leads to out-of-bounds memory write, causing memory corruption that could be exploited to execute arbitrary code or create a denial-of-service condition.

Remediation

Users are advised to upgrade the firmware to v2.16 or later. For additional security, it is recommended to implement robust network-level countermeasures, utilize the product's IP whitelisting feature to restrict Modbus/TCP access to trusted client IP addresses, and place the product within a highly segregated network zone, monitored by industrial firewalls.