CVE-2026-12579
Received Received - Intake

AS228T Authentication Bypass Vulnerability

Vulnerability report for CVE-2026-12579, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-01

Last updated on: 2026-07-01

Assigner: Deltaww

Description

AS228T with Authentication Bypass Vulnerability

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-01
Last Modified
2026-07-01
Generated
2026-07-01
AI Q&A
2026-07-01
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
delta_electronics as228t to 1.14 (exc)
delta_electronics as228t From 1.16 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-288 The product requires authentication, but the product has an alternate path or channel that does not require authentication.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Impact Analysis

This authentication bypass vulnerability can impact you by allowing unauthorized users to access the AS228T device.

Such unauthorized access can compromise the integrity and availability of the device, potentially leading to malicious actions or disruptions.

Because the vulnerability affects critical security controls, it may expose your systems to further attacks or unauthorized control.

Mitigation Strategies

To mitigate the AS228T Authentication Bypass Vulnerability (CVE-2026-12579), Delta Electronics recommends upgrading the firmware to version 1.16 or later.

Additional general cybersecurity measures include avoiding untrusted links, isolating control systems from the internet, using firewalls, and employing secure remote access methods such as VPNs.

For further support or information, users should contact Delta Electronics through their official portal.

Executive Summary

The vulnerability CVE-2026-12579 is an authentication bypass issue affecting the Delta Electronics AS228T product, specifically versions 1.14 and earlier.

It allows an attacker to bypass authentication by using an alternate path or channel, which means unauthorized users can gain access without proper credentials.

This vulnerability is classified as high severity with a CVSS score of 7.4, indicating a significant risk.

Compliance Impact

The vulnerability is an authentication bypass issue that impacts the integrity and availability of the AS228T product. Such security weaknesses can potentially lead to unauthorized access or control system disruptions, which may affect compliance with standards and regulations that require protection of data integrity and system availability, such as GDPR and HIPAA.

However, the provided information does not explicitly describe the direct impact of this vulnerability on compliance with specific regulations like GDPR or HIPAA.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-12579. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart