CVE-2024-3871 Information

Description

The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements two features (access control lists management WPS pin setup) that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote authenticated attackers to gain remote command execution with elevated privileges on the affected devices.

This issue affects DVW-W02W2-E2 through version 2.5.2.

Reference

https://onekey.com/