CVE-2025-61860

An out-of-bounds read vulnerability exists in VS6MemInIF!settemptypedefault of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61857

An out-of-bounds write vulnerability exists in VS6ComFile!CItemExChange::WinFontDynStrCheck of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61858

An out-of-bounds write vulnerability exists in VS6ComFile!setAnimationItem of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61856

A stack-based buffer overflow vulnerability exists in VS6ComFile!CV7BaseMap::WriteV7DataToRom of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61860

An out-of-bounds read vulnerability exists in VS6MemInIF!settemptypedefault of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61859

An out-of-bounds write vulnerability exists in VS6ComFile!CItemDraw::ismotiontween of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

EUVD-2025-33716

An out-of-bounds read vulnerability exists in VS6ComFile!getovlpelementsize of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61862

An out-of-bounds read vulnerability exists in VS6ComFile!getovlpelementsize of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61862

Fuji Electric V-SFT contains an out-of-bounds read in VS6ComFile!get_ovlp_element_size (affecting v6.2.7.0 and earlier). Opening specially crafted V-SFT files may disclose information, cause ABEND, or allow arbitrary code execution. Affected product: V-SFT by Fuji Electric; vulnerable component: ...

CVE-2025-61861

CVE-2025-61861 concerns Fuji Electric V-SFT (HMI software). Affected versions: V-SFT 6.2.7.0 and earlier contain an out-of-bounds read in VS6ComFile!load_link_inf, caused by improper validation of input data length/size. Reported impacts include information disclosure, ABEND (system crash), and a...

EUVD-2025-33696

An out-of-bounds write vulnerability exists in VS6ComFile!CItemExChange::WinFontDynStrCheck of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

CVE-2025-61856

A stack-based buffer overflow vulnerability exists in VS6ComFile!CV7BaseMap::WriteV7DataToRom of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...

PT-2025-41552

Name of the Vulnerable Software and Affected Versions V-SFT versions 6.2.7.0 and earlier Description An out-of-bounds read issue exists in the VS6ComFile!load link inf function. Processing specially crafted V-SFT files can lead to information disclosure, system crashes ABEND, and arbitrary code...

CVE-2024-24978

Denial-of-service DoS vulnerability exists in TvRock 0.9t8a. Receiving a specially crafted request by a remote attacker or having a user of TvRock click a specially crafted request may lead to ABEND abnormal end. Note that the developer was unreachable, therefore, users should consider stop using...

CVE-2024-24978

Denial-of-service DoS vulnerability exists in TvRock 0.9t8a. Receiving a specially crafted request by a remote attacker or having a user of TvRock click a specially crafted request may lead to ABEND abnormal end. Note that the developer was unreachable, therefore, users should consider stop using...

CVE-2024-24978

TvRock 0.9t8a has a DoS vulnerability that can trigger an ABEND via a specially crafted request, with exploitation possible by remote attackers or by users clicking the crafted request. The developer is unreachable, and multiple sources advise stopping use of TvRock 0.9t8a. No public patch or mit...

CVE-2024-24978

Denial-of-service DoS vulnerability exists in TvRock 0.9t8a. Receiving a specially crafted request by a remote attacker or having a user of TvRock click a specially crafted request may lead to ABEND abnormal end. Note that the developer was unreachable, therefore, users should consider stop using...

PT-2024-20685 · Tvrock · Tvrock

Name of the Vulnerable Software and Affected Versions: TvRock version 0.9t8a Description: A denial-of-service DoS issue exists, where receiving a specially crafted request by a remote attacker or having a user click a specially crafted request may lead to an abnormal end ABEND. The developer of...

JVN#40079147: TvRock vulnerable to denial-of-service (DoS)

TvRock provided by TvRock according to the original report submitted by the reporter is a tool to set a timer recording for a TV program. TvRock contains a denial-of-service DoS vulnerability CWE-400. Impact Receiving a specially crafted request by a remote attacker or having a user of TVRock cli...

Command injection

Fuji Xerox multifunction devices and printers DocuCentre-VII C7773/C6673/C5573/C4473/C3373/C3372/C2273, DocuCentre-VII C7788/C6688/C5588, ApeosPort-VII C7773/C6673/C5573/C4473/C3373/C3372 C2273, ApeosPort-VII C7788/C6688/C5588, ApeosPort...