Skip to main content
Live Webinar with SANS (June 25)— Agentic CTI Automation for Fun & ProfitRegister Free
Mallory
Back to vulnerabilities
Critical

Delta DVP-12SE11T Authentication Bypass via Partial Password Disclosure

IdentifiersCVE-2025-15103CWE-200· Exposure of Sensitive Information…

CVE-2025-15103 is a high-severity vulnerability affecting the Delta Electronics DVP-12SE11T PLC. The issue is described as an authentication bypass caused by partial password disclosure and a weakness in authentication handling logic. According to the provided content, an attacker can remotely exploit the flaw without privileges or user interaction, and the vulnerability may leak information related to user passwords. This exposure can then be used to bypass authentication on the device. The content associates the issue with improper handling of sensitive information and identifies CWE-200 as the relevant weakness class.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation can compromise confidentiality, integrity, and availability of the affected PLC. Because the flaw enables password-related information leakage and authentication bypass, an attacker may gain unauthorized access to the controller and then issue actions or changes that affect device operation. In an OT environment, compromise of a PLC can directly affect physical processes and may lead to unsafe conditions, service disruption, unexpected process behavior, or broader operational impact.

Mitigation

If you can’t patch tonight, do this now.

Until firmware updates can be applied, reduce exposure of the PLC by restricting network access to trusted management networks only, segmenting OT assets, and preventing direct untrusted or Internet-reachable access to the device. Monitor for unauthorized authentication attempts and anomalous PLC communications. Because the issue involves password-related information leakage, organizations should also review credential handling practices and ensure that authentication workflows do not expose partial credential data.

Remediation

Patch, then assume compromise.

Apply the Delta Electronics firmware update released for the DVP-12SE11T vulnerabilities in late December 2025. The provided content states that Delta released firmware fixes for all four identified vulnerabilities shortly before the 2026 New Year. In addition, review and correct the device authentication logic to eliminate partial password disclosure and ensure full credential validation during authentication.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
DeltawwDvp-12se11t Firmwareoperating_system

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

10 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

10 SOURCESView more in app
the hacker newsNews
Jan 15, 2026
ThreatsDay Bulletin: AI Voice Cloning Exploit, Wi-Fi Kill Switch, PLC Vulns, and 14 More Stories

A critical authentication bypass in the Delta Electronics DVP-12SE11T PLC that leverages partial password disclosure to bypass authentication.

Read more
dark readingNews
Jan 15, 2026
Trio of Critical Bugs Spotted in Delta Industrial PLCs

Information disclosure in Delta Electronics DVP-12SE11T PLC where flawed authentication handling can leak information related to user passwords.

Read more
cvefeed high severityNews
Dec 30, 2025
CVE-2025-15103 - DVP-12SE11T - Authentication Bypass via Partial Password Disclosure

A remotely exploitable authentication bypass vulnerability in DVP-12SE11T due to partial password disclosure, allowing attackers to gain unauthorized access.

Read more
What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity7

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2025-15103
NVD
nvd.nist.gov/vuln/detail/CVE-2025-15103
MITRE CWE · CWE-200
Exposure of Sensitive Information to an…
Vendor Advisory
filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00022_DVP-12SE11T%20Multiple%20Vulnerabilities.pdf