Auth bypass in Deltaww Dvp-12se

CVE-2026-12819

Delta Electronics DVP12SE PLC exposes a Modbus TCP service over a specified port without authentication or access control, permitting unauthenticated interaction with security-sensitive PLC functions.

Vulnerability class: Broken Authentication

EPSS: 0.003 (22.7th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References