CVSS4
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
ACTIVE
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/SC:N/VI:H/SI:N/VA:H/SA:N
EPSS
Percentile
55.4%
Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a memory corruption condition. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current process.
[
{
"defaultStatus": "unaffected",
"product": "CNCSoft-G2",
"vendor": "Delta Electronics",
"versions": [
{
"status": "affected",
"version": "2.0.0.5"
}
]
}
]