CVE-2025-22880

High CVSS: 7.8

Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.

Vendor

Deltaww

Product

Cncsoft-g2

CWE

CWE-122

Yayın Tarihi

2025-02-07 08:15:28

Güncelleme

2025-07-11 17:49:00

Source Identifier

759f5e80-c8e1-4224-bead-956d7b33c98b

KEV Date Added

Kategoriler

CWE-122 Cncsoft-g2 HIGH Deltaww 2025

Referanslar

https://filecenter.deltaww.com/news/download/doc/Delta-PCSA-2025-00002_CNCSoft-G2%20-%20Heap-based%20Buffer%20Overflow_v1.pdf

Benzer Kayıtlar

Critical

CVE-2026-3630

Delta Electronics COMMGR2 has Stack-based Buffer Overflow vulnerability.

High

CVE-2026-3631

Delta Electronics COMMGR2 has Buffer Over-read DoS vulnerability.

High

CVE-2026-3094

Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an att…

High

CVE-2026-1361

ASDA-Soft Stack-based Buffer Overflow Vulnerability

High

CVE-2026-0975

Delta Electronics DIAView has Command Injection vulnerability.

Critical

CVE-2025-62582

Delta Electronics DIAView has multiple vulnerabilities.